VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Kontrola logu - pomalsi start systemu

https://forum.viry.cz:443/viewtopic.php?t=144467

Stránka 1 z 1

Kontrola logu - pomalsi start systemu

Napsal: 18 kvě 2015 21:24
od matyii
Logfile of random's system information tool 1.10 (written by random/random)
Run by Lenovo at 2015-05-18 22:13:32
Microsoft Windows 7 Ultimate
System drive C: has 97 GB (47%) free of 206 GB
Total RAM: 6046 MB (27% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:13:42, on 18. 5. 2015
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Lenovo\Bluetooth Software\Bluetooth Headset Helper.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Lenovo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: 194.160.44.45 izby.ubytovanie.umb.sk
O1 - Hosts: 194.160.44.45 www.izby.ubytovanie.umb.sk
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Update ESET's license.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O15 - ESC Trusted Zone: http://*.connectify.me
O15 - ESC Trusted Zone: http://*.fastspring.com
O15 - ESC Trusted Zone: http://*.connectify.me (HKLM)
O15 - ESC Trusted Zone: http://*.fastspring.com (HKLM)
O16 - DPF: {2ADE19BB-1E79-4EC4-976E-AC74339ADD76} (ActiveViewGUI Control) - http://213.160.173.158/ActiveViewGUI.cab
O16 - DPF: {66F7F252-3FE1-4650-B1E5-94B2A38271C5} (ActiveView Control) - http://213.160.173.158/ActiveView.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apache2.4 - Apache Software Foundation - C:\xampp\apache\bin\httpd.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\xampp\FileZillaFTP\FileZillaServer.exe
O23 - Service: FileZillaServer - FileZilla Project - C:\xampp\filezillaftp\filezillaserver.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - C:\xampp\mysql\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10996 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 24607488
\??\C:\Windows\system32\conhost.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\xampp\apache\bin\httpd.exe" -k runservice
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\xampp\filezillaftp\filezillaserver.exe"
C:\Windows\system32\svchost.exe -k ftpsvc
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\TortoiseSVN\bin\TSVNCache.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\xampp\mysql\bin\mysqld.exe --defaults-file=c:\xampp\mysql\bin\my.ini mysql
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -scheduled
"C:\Program Files\Lenovo\Bluetooth Software\Bluetooth Headset Helper.exe"
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Play -Embedding
"taskhost.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="14592.0.395369133\1554324353" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,19,42 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2656 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.2.625763961\1174204091" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.3.1619486640\1046011903" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.6.2079261530\1550137166" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.15.854674534\1145925680" /prefetch:673131151
C:\Windows\splwow64.exe 2
"C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE" /n /dde
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.107.15869736\1239882763" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="14592.114.37457846\1822754074" --ppapi-flash-args=enable_hw_video_decode=1 --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.115.516834759\1062359073" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.117.749802042\730100091" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.143.1390307204\751629048" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-databases --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.145.1833614895\1803736916" /prefetch:673131151
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 3fde8636-b6a4-442a-8edc-f0d978483450 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe
\??\C:\Windows\system32\conhost.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="14592.150.1679157732\1517951738" --ppapi-flash-args=enable_hw_video_decode=1 --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-databases --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.152.1768592050\1847141129" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-databases --enable-deferred-image-decoding --lang=sk --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_16/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=14592 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --disable-accelerated-video-decode --channel="14592.153.1717305331\252412270" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe30_ Global\UsGthrCtrlFltPipeMssGthrPipe30 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Lenovo\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineCore1d05c94454e154e.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA1cf91292398cf04.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineUA1cfeea97cb5f8de.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineUA1d05c94465facfe.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineUA1d08f9ca5a5bdf4.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1cf2aee1f37e98e.job - C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1d05c993632b0d8.job - C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1d08fdb7662caae.job - C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000UA1cf8ad8a11d646d.job - C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000UA1d08fdb77266bac.job - C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-13 551848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-13 212904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-02 170264]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-02 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-02 440600]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-08-06 8071680]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-08-06 6193152]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-03-26 2899216]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-03-26 410896]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-03-21 6330568]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-03-28 1570672]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-03-28 2673296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe [2013-12-20 116648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\331BigDog]
C:\Program Files (x86)\USB Camera\VM331_STI.EXE [2011-11-24 548864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-12-23 143360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe [2013-12-20 116648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07 335232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Lenovo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Monitor Ink Alerts - HP Deskjet 1050 J410 series.lnk]
C:\Windows\system32\RunDll32.exe [2009-07-14 45568]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-21 291648]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2011-12-20 507744]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07 335232]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
Update ESET's license.lnk - C:\Program Files\ESET\MiNODLogin\launcher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-17 430080]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-05-18 22:13:33 ----D---- C:\Program Files\trend micro
2015-05-18 22:13:32 ----D---- C:\rsit
2015-05-04 21:18:34 ----D---- C:\ruby-2.1.0
2015-05-04 16:42:48 ----A---- C:\Windows\WORDPAD.INI
2015-04-29 18:17:19 ----D---- C:\Program Files (x86)\MP3 Cutter
2015-04-29 15:44:09 ----D---- C:\rubygems-2.2.3
2015-04-29 15:41:23 ----D---- C:\Sites
2015-04-29 15:39:07 ----D---- C:\RailsInstaller
2015-04-29 15:30:26 ----D---- C:\Program Files (x86)\PokerStars.EU
2015-04-27 11:28:38 ----D---- C:\Ruby22-x64

======List of files/folders modified in the last 1 month======

2015-05-18 22:13:42 ----D---- C:\Windows\Prefetch
2015-05-18 22:13:36 ----D---- C:\Windows\Temp
2015-05-18 22:13:33 ----RD---- C:\Program Files
2015-05-18 22:00:02 ----D---- C:\Users\Lenovo\AppData\Roaming\Skype
2015-05-18 16:17:42 ----D---- C:\Program Files\eclipse
2015-05-17 00:18:17 ----SHD---- C:\System Volume Information
2015-05-16 15:23:20 ----RD---- C:\Program Files (x86)
2015-05-16 15:23:15 ----D---- C:\Windows\Tasks
2015-05-16 15:23:15 ----D---- C:\Windows\system32\Tasks
2015-05-16 08:14:02 ----SHD---- C:\Windows\Installer
2015-05-16 07:57:58 ----D---- C:\Windows\SysWOW64
2015-05-15 21:00:26 ----D---- C:\Windows\System32
2015-05-15 21:00:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-05-15 21:00:25 ----D---- C:\Windows\inf
2015-05-12 17:28:19 ----D---- C:\Windows\system32\config
2015-05-12 10:17:09 ----D---- C:\Users\Lenovo\AppData\Roaming\vlc
2015-05-10 12:00:01 ----D---- C:\Program Files\ESET
2015-05-04 16:42:48 ----D---- C:\Windows
2015-04-30 09:17:02 ----A---- C:\Windows\SYSWOW64\log.txt
2015-04-30 09:13:35 ----D---- C:\Windows\Minidump
2015-04-24 15:27:11 ----D---- C:\ProgramData\Skype
2015-04-20 20:51:28 ----D---- C:\Users\Lenovo\AppData\Roaming\Mozilla

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-02-14 58416]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-21 19264]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX64.sys [2013-08-06 39008]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-03-13 32456]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-02-14 213416]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-01-10 150616]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-01-10 59440]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-01-10 190232]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2013-08-06 30816]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2012-04-01 163368]
R3 BCM43XX;Broadcom 802.11 - ovládač sieťového adaptéru; C:\Windows\system32\DRIVERS\bcmwl664.sys [2012-05-17 5443648]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2012-07-02 598328]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-05-02 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-06 21544]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-01-31 1601152]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-11 283064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-17 14692896]
R3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-21 357184]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-21 789824]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2012-03-02 104048]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-03-28 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvIntel;SmbDrvIntel; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-03-26 27408]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2012-03-26 428304]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2011-12-06 952832]
S3 Bridge;@%SystemRoot%\system32\bridgeres.dll,-3; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 libusb0;libusb-win32 - Kernel Driver 04/08/2011 1.2.4.0; C:\Windows\system32\DRIVERS\libusb0.sys [2011-05-17 44480]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-09-19 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2011-11-15 313960]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 Apache2.4;Apache2.4; C:\xampp\apache\bin\httpd.exe [2014-07-17 22016]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2012-07-02 1005944]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-03-21 1341664]
R2 FileZillaServer;FileZillaServer; C:\xampp\filezillaftp\filezillaserver.exe [2012-02-26 632320]
R2 ftpsvc;@%windir%\system32\inetsrv\ftpres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-03-28 1152144]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-02 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-02-29 161560]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-02-29 277784]
R2 mysql;mysql; C:\xampp\mysql\bin\mysqld.exe [2014-09-11 11021824]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-03-28 1878672]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-03-28 22995600]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-04-20 129424]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-02-29 363800]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-06 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15 268464]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-02 276248]
S3 FileZilla Server;FileZilla Server FTP server; C:\xampp\FileZillaFTP\FileZillaServer.exe [2012-02-26 632320]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-09-30 654848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-06 116648]
S3 MsDepSvc;Web Deployment Agent Service; C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe [2012-09-06 80472]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 W3SVC;World Wide Web Publishing Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

Re: Kontrola logu - pomalsi start systemu

Napsal: 19 kvě 2015 05:11
od vyosek
Zdravim :)

Nekolik predchozich kontrol jste nedokoncil, ma cenu s timto ztracet cas a zabyvat se tim??

Re: Kontrola logu - pomalsi start systemu

Napsal: 19 kvě 2015 09:07
od matyii
minuly log som nedokoncil, lebo sa vtedy preslo na novy OS v servise.. ale donate bol aj vtedy... tak ak sa da, rad by som moj pomalsi start vyriesil...dakujem :)

Re: Kontrola logu - pomalsi start systemu

Napsal: 19 kvě 2015 09:19
od vyosek
:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
  • Zaskrtnete okenko Pro vsechny uzivatele
  • Zaskrtnete okenko Kontrola na havet "LOP"
  • Zaskrtnete okenko Kontrola na havet "Purity"
  • Stari souboru zmente z 30 dnu na 7 dnu
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s
  • Kliknete na tlacitko Prohledat
  • Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
  • Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

Re: Kontrola logu - pomalsi start systemu

Napsal: 19 kvě 2015 09:19
od vyosek
:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
  • Zaskrtnete okenko Pro vsechny uzivatele
  • Zaskrtnete okenko Kontrola na havet "LOP"
  • Zaskrtnete okenko Kontrola na havet "Purity"
  • Stari souboru zmente z 30 dnu na 7 dnu
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s
  • Kliknete na tlacitko Prohledat
  • Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
  • Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

Re: Kontrola logu - pomalsi start systemu

Napsal: 19 kvě 2015 15:39
od matyii
OTL Extras logfile created on: 19. 5. 2015 10:30:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lenovo\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

5,90 Gb Total Physical Memory | 2,04 Gb Available Physical Memory | 34,59% Memory free
11,81 Gb Paging File | 5,85 Gb Available in Paging File | 49,51% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 201,08 Gb Total Space | 94,24 Gb Free Space | 46,87% Space Free | Partition Type: NTFS
Drive D: | 365,04 Gb Total Space | 85,79 Gb Free Space | 23,50% Space Free | Partition Type: NTFS
Drive E: | 365,29 Gb Total Space | 157,66 Gb Free Space | 43,16% Space Free | Partition Type: NTFS

Computer Name: LENOVO-PC | User Name: Lenovo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = OperaStable] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = OperaStable] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-3413017964-2039321696-1439861226-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1"
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OpenAsAWebSite] -- C:\Program Files (x86)\Microsoft WebMatrix\WebMatrix.exe #ExecuteCommand# SiteFromFolder %L (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1"
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OpenAsAWebSite] -- C:\Program Files (x86)\Microsoft WebMatrix\WebMatrix.exe #ExecuteCommand# SiteFromFolder %L (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{030BFDFD-CEDD-4E8E-BDD7-51FD3ECCCC96}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{0DF5172D-B6FD-405A-B819-073104585994}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1121DB95-1BB5-46E0-8727-7F8D95827EFF}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{15AA21FF-516D-41A9-9A0D-2E45B3279401}" = lport=138 | protocol=17 | dir=in | app=system |
"{187D7776-EC88-40B3-BDBB-3745E3A39A53}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{1AADC376-757F-4DE5-BB1C-33E360B80AD7}" = rport=10243 | protocol=6 | dir=out | app=system |
"{1B9EFA36-4568-4611-8420-701C65407607}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{2090DB49-F870-4E6E-8B3A-DFCFC57C2115}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{2233C4C1-0C75-488F-9830-9A4F6A7C9BAD}" = rport=139 | protocol=6 | dir=out | app=system |
"{2B385E79-FBC8-45CA-B2BB-DAAC922D2393}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{3349696C-50D1-4EFD-939E-3F7140391EB5}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{360DDC84-FFC0-4520-B9C7-007301F2D012}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{3908F6D4-5C48-4510-8F04-B0B3EF6D3546}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{3EC0E507-8904-46F1-AE86-4117C61A30B1}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{412216EC-5388-40BA-8A47-229EA19ADFEF}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{4573140C-0ADF-4637-9492-59C0E8798550}" = rport=445 | protocol=6 | dir=out | app=system |
"{490B041C-314C-45DD-A112-95386E9FEE5A}" = lport=10243 | protocol=6 | dir=in | app=system |
"{51E78C93-8D32-408B-BB41-105580F83AA1}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{62178257-DD90-4F37-8E6C-F5FC96D3A322}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{62B5371B-0FAF-485C-AF77-9F61970717E4}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{649E6109-DF2C-421C-A723-0C80CB55EF3A}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{64D3C1D0-2886-42B5-80A0-695203638517}" = lport=445 | protocol=6 | dir=in | app=system |
"{6A6506EE-F4AF-4D75-95BB-8AAD3FE57132}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{6FF39E62-2F8D-4C9E-8DAF-75743F56287E}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{709CAB82-6247-4FA6-B69E-048958E9E3BA}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{720CE201-A43E-4731-A737-BDF4D19B7282}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7719EBE1-53F6-4E36-AA28-D519CC1122FD}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{79C6AAEE-D6E6-4AFF-8FA0-252E604E6D63}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{7AD9D3B6-EA10-4D02-8DEF-A5368FEB5180}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{7CD92ADA-99F3-4C2E-AF83-0DC711A903B3}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{7E76E09A-5343-4E33-BDBA-4A5FFCB0B6ED}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{833E7D63-B502-4AE7-B852-F996C0FFA431}" = rport=138 | protocol=17 | dir=out | app=system |
"{853F0CB4-6A3C-46E2-8CDA-F928F7433D95}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{9752CA17-EC5A-4274-B5EF-9E685B0A2A4E}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{97DE0ABB-E97B-4FCF-BB1F-3579BCA9FB53}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{A39031F5-E2CE-47A9-B548-348AA86DFCBB}" = rport=137 | protocol=17 | dir=out | app=system |
"{A60079E6-D0BE-4DB0-B846-A0A5DC79BFEC}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{A8B468E6-83DD-436E-94CE-C875F354D7FB}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{A9B4B6AE-C095-45A5-BDFE-75915E42EEA2}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{AA0C351F-761F-4B0B-A4BC-656C8BB7435B}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{BDACEF8B-4F52-4D80-AAF3-7E272C071A12}" = lport=137 | protocol=17 | dir=in | app=system |
"{C15658DB-7059-41BE-83B7-D85394F0ADB4}" = lport=139 | protocol=6 | dir=in | app=system |
"{C89CEB93-1945-4624-9264-0882B8B94BBA}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{DB0B7393-76CC-4BB6-BEDE-857ABE61A7D2}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DE6BBCE6-545B-4674-8D4C-083D46D08D54}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E45BEA23-653F-45CF-83A1-D7A6DEF8AC19}" = lport=47995 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{F03B0342-F618-40D2-9836-4E6F1DFE2AF8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F20601E8-1BD2-45D7-94C2-53BD1CBF3176}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F66ED9BC-5ACA-469A-9997-E925048C5779}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{F71D3C84-5F62-4382-A535-C79390213603}" = lport=445 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0701D4EB-3A02-437B-AAE8-25756702F6F3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0EB5DE2B-69C7-4C9E-BC59-97508740F51B}" = protocol=17 | dir=in | app=c:\users\lenovo\appdata\roaming\utorrent\utorrent.exe |
"{17F57FDD-103B-413C-BB63-F2CD0D0C8B58}" = protocol=17 | dir=in | app=c:\users\lenovo\appdata\roaming\utorrent\utorrent.exe |
"{1D6A5033-2EC2-4400-9AD4-E12789E7FA77}" = protocol=6 | dir=in | app=c:\users\lenovo\appdata\roaming\utorrent\utorrent.exe |
"{1FA73A52-3187-4C9E-A8B0-98C8B57E2989}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{249E1A0C-5692-4CBC-947A-30B29F78789C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{26E35338-FE4F-4948-9C11-85169DC87D94}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{2B148914-2098-436D-9767-A08DB29F99EA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{305D198C-D980-4D8F-BB32-1D376C08D25C}" = dir=in | app=c:\program files\hp\hp deskjet 1050 j410 series\bin\usbsetup.exe |
"{319EF60A-FA19-4CD1-9A15-F3B10557D736}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{3368422B-6851-4ABF-8C29-D69FFEBDBDA0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{362E0CB0-485F-48D1-B899-238BBD1E1D91}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{4B6DC792-74E6-402E-B9CC-978C39440CA2}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{58AD2919-176C-4D20-A8F0-E4506B9465D5}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{5D26044E-CC4E-4A32-A9F4-10F069C3FDBE}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{66618A17-D4FA-4469-8FC2-C36EBE281D98}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{873686D0-817D-4FFB-AE2C-FE7A032DD98D}" = protocol=6 | dir=in | app=c:\users\lenovo\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{93D971C9-B72F-494D-B19E-F5DB30B21798}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{9BE7814C-9966-4A3E-9A59-570E66CBDCD7}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B11A528B-650C-47EC-8C04-28106EB2E76D}" = protocol=6 | dir=out | app=system |
"{B9B538CC-208A-47F1-A7FD-15EABD0A73B5}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\fifa 15 demo\fifasetup\fifaconfig.exe |
"{BA7A5967-A0C6-4E37-8119-114AAFDF263E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{BF2F7EFC-B0D0-495E-AC62-F54AEBEDF8DB}" = protocol=17 | dir=in | app=c:\users\lenovo\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{DE937700-528E-45E7-A571-97C08AB6C032}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{E24F62E1-C616-4260-BC4C-A9D4973861EC}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\fifa 15 demo\fifasetup\fifaconfig.exe |
"{E3003539-4986-4A9E-B617-9F3D66220CBB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E361F6DE-5C86-4A20-A998-0783E708E422}" = protocol=6 | dir=in | app=c:\users\lenovo\appdata\roaming\utorrent\utorrent.exe |
"{EA2FF1D6-CBC2-403F-8E7B-162B38733F74}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F2B8A4B0-8862-42E0-B62A-08D9EC8E484E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FA06AB97-B758-4386-804D-4E3933362D2C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{09B989E2-A623-42E3-818E-E1189BE37F2B}C:\program files (x86)\flashfxp 4\flashfxp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\flashfxp 4\flashfxp.exe |
"UDP Query User{24D65F58-8437-49F8-B739-A3D65CFBAC6B}C:\program files (x86)\flashfxp 4\flashfxp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\flashfxp 4\flashfxp.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{09536BA1-E498-4CC3-B834-D884A67D7E34}" = Intel® Trusted Connect Service Client
"{0E8670B8-3965-4930-ADA6-570348B67153}" = Microsoft SQL Server 2012 Transact-SQL ScriptDom
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{22F9A831-CA56-4406-85FE-47FFB0472804}" = Microsoft Azure Libraries for .NET – v2.5
"{26A24AE4-039D-4CA4-87B4-2F86417025FF}" = Java 7 Update 25 (64-bit)
"{26A24AE4-039D-4CA4-87B4-2F86418040F0}" = Java 8 Update 40 (64-bit)
"{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610
"{36E619BC-A234-4EC3-849B-779A7C865A45}" = Microsoft SQL Server 2012 Data-Tier App Framework
"{4D84C195-86F0-4B34-8FDE-4A17EB41306A}" = Microsoft Web Platform Installer 5.0
"{64A3A4F4-B792-11D6-A78A-00B0D0180400}" = Java SE Development Kit 8 Update 40 (64-bit)
"{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610
"{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}" = IIS 8.0 Express
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-041B-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Slovak) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{9E8CB340-24C0-4481-A2EE-1ECC2D404E23}" = Microsoft Azure Compute Emulator - v2.5
"{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb" = IIS Express Application Compatibility Database for x64
"{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}" = Lenovo Bluetooth with Enhanced Data Rate Software
"{A46322D1-A353-4F9A-8DA1-C58401E33639}" = Microsoft Azure Authoring Tools - v2.5
"{A9E679EC-8FD4-49D8-A5A5-ACE462515A9E}" = TortoiseSVN 1.8.10.26129 (64 bit)
"{AA72C306-30BE-4BB1-9E42-59552BAD2CDF}" = Microsoft Web Deploy 3.0
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 347.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafický ovládač 347.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.4.1.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 2.4.1.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Softvér systému s podporou technológie PhysX 9.14.0702
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizácie NVIDIA 2.4.1.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 2.4.1.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.27
"{BCA26999-EC22-3007-BB79-638913079C9A}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU
"{C2B8CBDE-5232-11E3-B494-F04DA23A5C58}" = MSVCRT Redists
"{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
"{D638A23C-5C5F-4B71-A354-EC78B2BDD320}" = HP Deskjet 1050 J410 series Product Improvement Study
"{E75776B2-EAE5-42F9-A800-0A10763DEDF0}" = Microsoft SQL Server 2012 Express LocalDB
"{F0235BC5-889C-442D-B831-7F894E5C9AD1}" = ESET Smart Security
"{F1949145-EB64-4DE7-9D81-E6D27937146C}" = Microsoft System CLR Types for SQL Server 2012 (x64)
"{F294770E-F869-400F-81C3-614B5F13CA54}" = HP Deskjet 1050 J410 series Basic Device Software
"{FAF57A91-58B3-490C-9D0C-66337DAD3F11}" = Microsoft SQL Server Compact 4.0 SP1 x64 ENU CTP1
"{FCADA26A-5672-31DD-BF0E-BA76ECF9B02D}" = Microsoft Help Viewer 1.0
"{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb" = IIS Express Application Compatibility Database for x86
"99841829BE839365AA67B2AD0E50D371F59F8A1E" = Windows Driver Package - Lenovo (ACPIVPC) System (12/15/2011 7.1.0.1)
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"Microsoft Azure Compute Emulator - v2.5" = Microsoft Azure Compute Emulator - v2.5
"Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0
"QGIS Chugiak" = QGIS Chugiak 2.4.0 Chugiak
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR 4.00 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{108C0C19-6316-4944-A62F-C744488F8639}" = EA SPORTS™ FIFA 15 Demo
"{111EE7DF-FC45-40C7-98A7-753AC46B12FB}" = QuickTime 7
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.3
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 45
"{28ABE740-47F3-441B-9437-852F6A64EFF8}" = Lenovo_Wireless_Driver
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{46F8CF66-AB83-38A7-99B2-A5BE507EE472}" = Microsoft Visual C++ 2010 Express - ENU
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C1CB8FA-89A5-476A-89B6-C69BDC668A9F}" = Microsoft WebMatrix 3
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{62BBB2F0-E220-4821-A564-730807D2C34D}" = Realtek USB 2.0 Reader Driver
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6E758104-D37A-45BD-995A-9C9DC376CA50}" = Microsoft Azure Command Line Tools
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7AF06D2F-5ABD-40DC-998B-3B492D7C0D42}" = FlipViewer Xpress Creator 3.7
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{870D4E4E-1BE7-42E7-9655-E7792290FCB4}" = Microsoft Azure Storage Tools - v3.0.0
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{96E3AED5-3D0B-4BB0-84C2-1EDADB204487}" = FlashFXP v4.0
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1051-7B44-AB0000000001}" = Adobe Reader XI (11.0.11) - Slovak
"{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}" = Lenovo EasyCamera
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B455E95A-B804-439F-B533-336B1635AE97}" = NVIDIA PhysX
"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}" = Dolby Advanced Audio v2
"{BFA04EE0-8240-4667-8D53-45496A901C33}" = Camtasia Studio 8
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}" = Google Talk Plugin
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D1CE3A61-C902-4065-86BE-2007DB996CC5}" = Windows Azure Storage Emulator - v3.4
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}" = Microsoft System CLR Types for SQL Server 2012
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F63C7908-08EA-46F5-9EDF-DFF9FD231051}" = Nero 7 Essentials
"{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}" = Microsoft SQL Server 2012 Data-Tier App Framework
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) OpenCL CPU Runtime
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFDEEDC1-B845-45AD-A5EF-906F044925DA}" = MySQL Connector J
"abgx360" = abgx360 v1.0.6
"adidas miCoach Manager_is1" = miCoach Manager
"Adobe Flash Player ActiveX" = Adobe Flash Player 17 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 17 NPAPI
"Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3
"DAEMON Tools Lite" = DAEMON Tools Lite
"EGR-ShellExtension" = EGR-ShellExtension
"FilesFrog Update Checker" = FilesFrog Update Checker
"Flvto Youtube Downloader" = Flvto Youtube Downloader
"Google Chrome" = Google Chrome
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"Microsoft Visual C++ 2010 Express - ENU" = Microsoft Visual C++ 2010 Express - ENU
"Origin" = Origin
"phpDesigner8_is1" = phpDesigner 8 version 8.1.1
"PokerStars.eu" = PokerStars.eu
"PROPLUS" = Microsoft Office Professional Plus 2007
"Startup Booster_is1" = Startup Booster v2.4
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player 2.0.6
"Windows Azure Storage Emulator - v3.4" = Windows Azure Storage Emulator - v3.4
"xampp" = XAMPP

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3413017964-2039321696-1439861226-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{613C3EA5-1248-4E35-B61A-6D0B31BBC0DB}_is1" = RailsInstaller 3.1.0
"{A98E44F8-6401-400F-830E-B1A2919C22BD}_is1" = Ruby 2.2.2-p95-x64
"CodeBlocks" = CodeBlocks
"UnityWebPlayer" = Unity Web Player
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 17. 5. 2015 7:08:55 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

Error - 17. 5. 2015 13:09:07 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

Error - 17. 5. 2015 17:58:41 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

Error - 17. 5. 2015 23:58:50 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

Error - 18. 5. 2015 5:46:21 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

Error - 18. 5. 2015 10:51:06 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

Error - 18. 5. 2015 12:26:36 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

Error - 18. 5. 2015 14:36:36 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

Error - 18. 5. 2015 17:19:20 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

Error - 18. 5. 2015 23:19:34 | Computer Name = Lenovo-PC | Source = NvStreamSvc | ID = 133073
Description =

[ OSession Events ]
Error - 14. 10. 2013 10:41:29 | Computer Name = Lenovo-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1593
seconds with 780 seconds of active time. This session ended with a crash.

Error - 17. 10. 2013 11:55:34 | Computer Name = Lenovo-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 254
seconds with 240 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 14. 5. 2015 10:19:08 | Computer Name = Lenovo-PC | Source = NetBT | ID = 4321
Description = The name "LENOVO-PC :0" could not be registered on the interface
with IP address 194.160.52.67. The computer with the IP address 194.160.52.103 did
not allow the name to be claimed by this computer.

Error - 15. 5. 2015 15:09:44 | Computer Name = Lenovo-PC | Source = bowser | ID = 8003
Description =

Error - 16. 5. 2015 9:27:00 | Computer Name = Lenovo-PC | Source = bowser | ID = 8003
Description =

Error - 16. 5. 2015 18:10:31 | Computer Name = Lenovo-PC | Source = bowser | ID = 8003
Description =

Error - 17. 5. 2015 5:17:46 | Computer Name = Lenovo-PC | Source = bowser | ID = 8003
Description =

Error - 17. 5. 2015 5:57:45 | Computer Name = Lenovo-PC | Source = bowser | ID = 8003
Description =

Error - 17. 5. 2015 14:57:35 | Computer Name = Lenovo-PC | Source = DCOM | ID = 10010
Description =

Error - 17. 5. 2015 15:32:59 | Computer Name = Lenovo-PC | Source = bowser | ID = 8003
Description =

Error - 18. 5. 2015 10:20:04 | Computer Name = Lenovo-PC | Source = bowser | ID = 8003
Description =

Error - 18. 5. 2015 11:52:49 | Computer Name = Lenovo-PC | Source = NetBT | ID = 4321
Description = The name "WORKGROUP :1d" could not be registered on the interface
with IP address 192.168.1.37. The computer with the IP address 192.168.1.34 did
not allow the name to be claimed by this computer.


< End of report >

Re: Kontrola logu - pomalsi start systemu

Napsal: 19 kvě 2015 15:42
od matyii
OTL logfile created on: 19. 5. 2015 10:30:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lenovo\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

5,90 Gb Total Physical Memory | 2,04 Gb Available Physical Memory | 34,59% Memory free
11,81 Gb Paging File | 5,85 Gb Available in Paging File | 49,51% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 201,08 Gb Total Space | 94,24 Gb Free Space | 46,87% Space Free | Partition Type: NTFS
Drive D: | 365,04 Gb Total Space | 85,79 Gb Free Space | 23,50% Space Free | Partition Type: NTFS
Drive E: | 365,29 Gb Total Space | 157,66 Gb Free Space | 43,16% Space Free | Partition Type: NTFS

Computer Name: LENOVO-PC | User Name: Lenovo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2015/05/19 10:28:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Lenovo\Desktop\OTL.exe
PRC - [2015/05/05 06:06:54 | 000,812,872 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2015/03/28 05:45:04 | 002,673,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2015/03/28 05:45:01 | 001,878,672 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2015/03/07 16:18:40 | 001,058,176 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
PRC - [2014/12/19 09:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/09/11 16:13:20 | 011,021,824 | ---- | M] () -- C:\xampp\mysql\bin\mysqld.exe
PRC - [2014/07/17 13:44:26 | 000,022,016 | ---- | M] (Apache Software Foundation) -- C:\xampp\apache\bin\httpd.exe
PRC - [2013/03/21 15:19:46 | 001,341,664 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
PRC - [2012/07/02 18:22:54 | 000,151,416 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\Lenovo\Bluetooth Software\Bluetooth Headset Helper.exe
PRC - [2012/05/21 09:26:28 | 000,291,648 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2012/02/29 03:20:04 | 000,363,800 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012/02/29 03:19:58 | 000,277,784 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012/02/29 03:19:48 | 000,161,560 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2012/02/26 18:42:28 | 000,632,320 | ---- | M] (FileZilla Project) -- C:\xampp\FileZillaFTP\FileZillaServer.exe
PRC - [2009/07/14 03:14:47 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe


========== Modules (No Company Name) ==========

MOD - [2015/05/05 06:06:54 | 014,982,472 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\PepperFlash\pepflashplayer.dll
MOD - [2015/05/05 06:06:52 | 001,252,680 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libglesv2.dll
MOD - [2015/05/05 06:06:52 | 000,080,712 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libegl.dll
MOD - [2015/03/28 05:45:04 | 000,011,920 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
MOD - [2015/03/13 21:41:47 | 000,011,920 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\detoured.dll
MOD - [2014/12/17 21:53:56 | 000,065,792 | ---- | M] () -- C:\Program Files\TortoiseSVN\bin\TortoiseStub32.dll
MOD - [2014/12/17 21:53:42 | 000,071,936 | ---- | M] () -- C:\Program Files\TortoiseSVN\bin\libsasl32.dll
MOD - [2011/08/11 07:53:20 | 000,659,456 | ---- | M] () -- C:\Windows\SysWOW64\vmprp331.ax
MOD - [2006/10/26 13:56:46 | 000,757,008 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSPTLS.DLL


========== Services (SafeList) ==========

SRV:64bit: - [2015/03/28 05:45:00 | 001,152,144 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:64bit: - [2015/03/28 05:44:59 | 022,995,600 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2013/03/21 15:19:46 | 001,341,664 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2012/09/06 15:40:42 | 000,080,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe -- (MsDepSvc)
SRV:64bit: - [2012/07/02 18:21:52 | 001,005,944 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:64bit: - [2012/02/02 22:29:52 | 000,628,448 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 03:40:55 | 000,349,184 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\inetsrv\ftpsvc.dll -- (ftpsvc)
SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2015/04/15 10:37:14 | 000,268,464 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/03/28 05:45:01 | 001,878,672 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2015/02/18 19:11:32 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/12/19 09:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/09/11 16:13:20 | 011,021,824 | ---- | M] () [Auto | Running] -- C:\xampp\mysql\bin\mysqld.exe -- (mysql)
SRV - [2014/07/17 13:44:26 | 000,022,016 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\xampp\apache\bin\httpd.exe -- (Apache2.4)
SRV - [2013/09/30 11:07:35 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2012/07/09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012/03/02 23:48:56 | 000,276,248 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012/02/29 03:20:04 | 000,363,800 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/02/29 03:19:58 | 000,277,784 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/02/29 03:19:48 | 000,161,560 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/02/26 18:42:28 | 000,632,320 | ---- | M] (FileZilla Project) [Auto | Running] -- C:\xampp\FileZillaFTP\FileZillaServer.exe -- (FileZillaServer)
SRV - [2012/02/26 18:42:28 | 000,632,320 | ---- | M] (FileZilla Project) [On_Demand | Stopped] -- C:\xampp\FileZillaFTP\FileZillaServer.exe -- (FileZilla Server)
SRV - [2009/07/14 03:15:31 | 000,396,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2009/07/14 03:15:31 | 000,396,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2009/07/14 03:14:53 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2015/03/28 05:44:59 | 000,019,600 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:64bit: - [2015/03/13 21:41:47 | 000,032,456 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2014/11/22 12:46:30 | 000,038,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2014/09/19 00:07:30 | 000,027,136 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ptun0901.sys -- (ptun0901)
DRV:64bit: - [2013/12/11 18:22:02 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013/08/06 08:25:37 | 000,030,816 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:64bit: - [2013/08/06 08:25:36 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:64bit: - [2013/02/14 13:21:06 | 000,058,416 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64bit: - [2013/02/14 13:21:04 | 000,213,416 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2013/01/10 10:25:22 | 000,190,232 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64bit: - [2013/01/10 10:25:22 | 000,059,440 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF)
DRV:64bit: - [2013/01/10 10:25:20 | 000,150,616 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2012/07/02 22:05:22 | 000,598,328 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwampfl.sys -- (btwampfl)
DRV:64bit: - [2012/05/21 09:25:32 | 000,789,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2012/05/21 09:25:32 | 000,357,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2012/05/21 09:25:32 | 000,019,264 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2012/05/17 05:05:44 | 005,443,648 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2012/05/02 00:18:28 | 000,184,144 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2012/04/01 22:27:32 | 000,163,368 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcbtums.sys -- (bcbtums)
DRV:64bit: - [2012/03/26 12:31:32 | 000,428,304 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012/03/26 12:31:30 | 000,027,408 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvIntel)
DRV:64bit: - [2012/03/06 05:29:42 | 000,210,984 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2012/03/06 05:29:40 | 000,021,544 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2012/03/02 12:49:20 | 000,104,048 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2012/02/17 19:28:56 | 014,692,896 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012/01/31 07:17:44 | 001,601,152 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2011/12/06 13:23:10 | 000,331,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2011/12/06 09:31:40 | 000,952,832 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vm331avs.sys -- (vm331avs)
DRV:64bit: - [2011/11/15 12:24:20 | 000,313,960 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rtsuvstor.sys -- (RSUSBVSTOR)
DRV:64bit: - [2011/11/10 11:04:14 | 000,060,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2011/09/17 18:38:52 | 000,039,976 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2011/05/17 16:44:46 | 000,044,480 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\libusb0.sys -- (libusb0)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sk
IE - HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = C2 98 45 5E F8 66 D0 01 [binary data]
IE - HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.40.2: C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2: C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Lenovo\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Lenovo\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Lenovo\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Lenovo\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Lenovo\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2013/08/06 09:13:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013/08/06 09:13:38 | 000,000,000 | ---D | M]

[2014/06/02 13:21:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lenovo\AppData\Roaming\mozilla\Extensions
[2014/01/20 16:57:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lenovo\AppData\Roaming\mozilla\Firefox\Profiles\ne25dl1w.default\extensions
[2014/01/23 03:08:26 | 000,000,000 | ---D | M] (iMacros for Firefox) -- C:\Users\Lenovo\AppData\Roaming\mozilla\Firefox\Profiles\ne25dl1w.default\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}

========== Chrome ==========

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.33_0\
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik\2.2015.506.11355_1\
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.1.0_0\
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohmmkhmmmpcnpikjeljgnaoabkaalbgc\0.1.18_0\
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pneoplpmnpjoioldpodoljacigkahohc\2.2.9_0\

O1 HOSTS File: ([2014/04/19 03:30:53 | 000,000,910 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 194.160.44.45 izby.ubytovanie.umb.sk
O1 - Hosts: 194.160.44.45 www.izby.ubytovanie.umb.sk
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [SynLenovoGestureMgr] C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe (Synaptics)
O4 - HKLM..\Run: [Dolby Advanced Audio v2] C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe (Dolby Laboratories Inc.)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {2ADE19BB-1E79-4EC4-976E-AC74339ADD76} http://213.160.173.158/ActiveViewGUI.cab (ActiveViewGUI Control)
O16 - DPF: {66F7F252-3FE1-4650-B1E5-94B2A38271C5} http://213.160.173.158/ActiveView.cab (ActiveView Control)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.28.64.99 195.80.171.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{448426E7-A372-4A55-BB6D-D5A1B967B3C5}: DhcpNameServer = 194.160.44.47 192.108.131.11
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FD919402-8D94-4CC4-9CD7-2DCD4E234B3F}: DhcpNameServer = 195.28.64.99 195.80.171.4
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: vidc.tsc2 - C:\Windows\SysWOW64\tsc2_codec64.dll (TechSmith Corporation)
Drivers32:64bit: vidc.tscc - C:\Windows\SysWOW64\tsccvid64.dll (TechSmith Corporation)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.tsc2 - C:\Windows\SysWOW64\tsc2_codec32.dll (TechSmith Corporation)
Drivers32: vidc.tscc - C:\Windows\SysWOW64\tsccvid.dll (TechSmith Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2015/05/19 10:28:08 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Lenovo\Desktop\OTL.exe
[2015/05/18 22:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2015/05/18 22:13:32 | 000,000,000 | ---D | C] -- C:\rsit
[2015/05/18 19:08:24 | 000,000,000 | ---D | C] -- C:\Users\Lenovo\Desktop\Garden
[2015/05/12 17:27:07 | 000,000,000 | ---D | C] -- C:\Users\Lenovo\Desktop\JaSy

========== Files - Modified Within 7 Days ==========

[2015/05/19 10:33:40 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015/05/19 10:28:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Lenovo\Desktop\OTL.exe
[2015/05/19 10:28:00 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000UA1d08fdb77266bac.job
[2015/05/19 10:28:00 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000UA1cf8ad8a11d646d.job
[2015/05/19 10:20:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1cfeea97cb5f8de.job
[2015/05/19 10:14:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1cf91292398cf04.job
[2015/05/19 09:58:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1d08f9ca5a5bdf4.job
[2015/05/19 09:45:36 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/05/19 09:45:36 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/05/19 09:45:21 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1d05c94454e154e.job
[2015/05/19 09:45:17 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1cf2aee1f37e98e.job
[2015/05/19 09:45:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/05/18 15:53:12 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1d08fdb7662caae.job
[2015/05/16 15:23:13 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1d05c993632b0d8.job
[2015/05/16 07:53:33 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1d05c94465facfe.job
[2015/05/15 21:00:26 | 007,045,234 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015/05/15 21:00:26 | 000,771,644 | ---- | M] () -- C:\Windows\SysNative\perfh013.dat
[2015/05/15 21:00:26 | 000,766,116 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2015/05/15 21:00:26 | 000,757,396 | ---- | M] () -- C:\Windows\SysNative\prfh0816.dat
[2015/05/15 21:00:26 | 000,747,580 | ---- | M] () -- C:\Windows\SysNative\perfh019.dat
[2015/05/15 21:00:26 | 000,710,722 | ---- | M] () -- C:\Windows\SysNative\perfh00E.dat
[2015/05/15 21:00:26 | 000,692,636 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2015/05/15 21:00:26 | 000,684,058 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015/05/15 21:00:26 | 000,636,046 | ---- | M] () -- C:\Windows\SysNative\perfh008.dat
[2015/05/15 21:00:26 | 000,182,620 | ---- | M] () -- C:\Windows\SysNative\perfc00E.dat
[2015/05/15 21:00:26 | 000,166,212 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2015/05/15 21:00:26 | 000,163,388 | ---- | M] () -- C:\Windows\SysNative\perfc013.dat
[2015/05/15 21:00:26 | 000,162,338 | ---- | M] () -- C:\Windows\SysNative\prfc0816.dat
[2015/05/15 21:00:26 | 000,161,186 | ---- | M] () -- C:\Windows\SysNative\perfc019.dat
[2015/05/15 21:00:26 | 000,150,906 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2015/05/15 21:00:26 | 000,129,704 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015/05/15 21:00:26 | 000,121,496 | ---- | M] () -- C:\Windows\SysNative\perfc008.dat
[2015/05/15 21:00:26 | 000,040,920 | ---- | M] () -- C:\Windows\SysNative\perfh01B.dat
[2015/05/15 21:00:26 | 000,011,998 | ---- | M] () -- C:\Windows\SysNative\perfc01B.dat
[2015/05/14 13:49:21 | 000,127,414 | ---- | M] () -- C:\Users\Lenovo\Desktop\11118146_384396648422535_1840082382_n.jpg
[2015/05/14 07:25:47 | 000,064,104 | ---- | M] () -- C:\Users\Lenovo\Desktop\11204794_1101585563201512_544134224_o.jpg
[2015/05/14 00:16:41 | 000,002,195 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/05/12 15:33:54 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/05/12 15:33:54 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

========== Files Created - No Company Name ==========

[2015/05/19 10:33:40 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015/05/16 15:23:15 | 000,000,950 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000UA1d08fdb77266bac.job
[2015/05/16 15:23:14 | 000,000,898 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1d08fdb7662caae.job
[2015/05/16 07:53:35 | 000,000,936 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1d08f9ca5a5bdf4.job
[2015/05/14 07:25:47 | 000,064,104 | ---- | C] () -- C:\Users\Lenovo\Desktop\11204794_1101585563201512_544134224_o.jpg
[2015/05/13 20:15:09 | 000,127,414 | ---- | C] () -- C:\Users\Lenovo\Desktop\11118146_384396648422535_1840082382_n.jpg
[2015/05/04 21:22:36 | 000,000,000 | ---- | C] () -- C:\Users\Lenovo\2.1.0'
[2015/05/04 16:42:48 | 000,000,193 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2015/04/29 15:42:06 | 000,000,049 | ---- | C] () -- C:\Users\Lenovo\.gitconfig
[2015/03/25 12:40:00 | 000,000,600 | ---- | C] () -- C:\Users\Lenovo\AppData\Local\PUTTY.RND
[2015/03/20 18:26:54 | 000,851,968 | ---- | C] () -- C:\Users\Lenovo\WAStorageEmulatorDb34_log.ldf
[2015/03/20 18:26:53 | 003,211,264 | ---- | C] () -- C:\Users\Lenovo\WAStorageEmulatorDb34.mdf
[2015/01/20 13:43:51 | 000,004,023 | ---- | C] () -- C:\Users\Lenovo\pod300.qlr
[2014/11/30 12:23:53 | 000,028,133 | ---- | C] () -- C:\Users\Lenovo\AppData\Roaming\phpdesigner.xml
[2014/10/01 13:54:54 | 000,000,000 | ---- | C] () -- C:\Users\Lenovo\AppData\Local\{FADF2DCC-F53C-4691-9E67-278CDA1315B4}
[2014/08/16 09:33:45 | 000,003,584 | ---- | C] () -- C:\Users\Lenovo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/09/17 17:28:46 | 000,003,746 | ---- | C] () -- C:\Users\Lenovo\AppData\Local\SRDownloader.err
[2013/09/17 17:27:17 | 000,001,080 | ---- | C] () -- C:\Users\Lenovo\AppData\Local\SRDownloader.nast
[2013/08/12 17:09:03 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2013/08/06 08:11:40 | 006,511,594 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/08/06 08:10:30 | 000,001,822 | ---- | C] () -- C:\Windows\vm331Rmv.ini
[2013/08/06 08:10:30 | 000,001,822 | ---- | C] () -- C:\Windows\SysWow64\vm331Rmv.ini
[2013/08/06 07:43:04 | 000,058,880 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013/08/06 07:43:03 | 013,020,160 | ---- | C] () -- C:\Windows\SysWow64\ig7icd32.dll
[2013/08/06 07:43:03 | 000,735,796 | ---- | C] () -- C:\Windows\SysWow64\igkrng700.bin
[2013/08/06 07:43:03 | 000,561,508 | ---- | C] () -- C:\Windows\SysWow64\igfcg700m.bin
[2013/07/30 13:52:04 | 000,159,744 | ---- | C] () -- C:\Windows\SysWow64\ftfgughv.dat

========== ZeroAccess Check ==========

[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009/07/14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014/06/06 14:28:15 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\abgx360
[2014/12/17 14:08:46 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\DAEMON Tools Lite
[2015/01/19 14:00:19 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\EBookSys
[2013/08/06 09:17:43 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\ESET
[2014/05/27 13:56:51 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\FlvtoConverter
[2013/09/13 16:37:13 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\GHISLER
[2014/07/28 11:40:25 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\HandBrake
[2015/03/20 21:33:54 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\NuGet
[2013/08/06 17:27:47 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Opera Software
[2014/09/21 17:11:46 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Origin
[2014/11/30 12:23:52 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\phpDesigner
[2014/11/03 18:21:23 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Remote Control Server
[2014/01/23 03:35:12 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Seznam.cz
[2014/01/20 01:55:04 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Smart PC Solutions
[2014/07/12 09:58:41 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Sony
[2015/03/13 12:29:40 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Subversion
[2014/07/12 10:39:26 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\TechSmith
[2014/06/02 13:21:52 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Thunderbird
[2013/09/18 15:00:33 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\TV Online
[2013/09/04 14:28:45 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Unity
[2014/11/30 12:24:02 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\uTorrent

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009/07/14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 07:08:49 | 000,032,526 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013/08/06 10:10:55 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/08/06 17:25:35 | 000,000,932 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2014/02/16 10:07:23 | 000,000,898 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1cf2aee1f37e98e.job
[2014/06/18 11:35:23 | 000,000,950 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000UA1cf8ad8a11d646d.job
[2014/06/26 12:26:49 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf91292398cf04.job
[2014/10/23 12:09:52 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfeea97cb5f8de.job
[2015/03/12 09:15:08 | 000,000,932 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d05c94454e154e.job
[2015/03/12 09:15:09 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d05c94465facfe.job
[2015/03/12 09:50:30 | 000,000,898 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1d05c993632b0d8.job
[2015/05/16 07:53:35 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f9ca5a5bdf4.job
[2015/05/16 15:23:14 | 000,000,898 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1d08fdb7662caae.job
[2015/05/16 15:23:15 | 000,000,950 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000UA1d08fdb77266bac.job

< >

< MD5 for: ATAPI.SYS >
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009/07/14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009/07/14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009/07/14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009/07/14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe

< MD5 for: CDROM.SYS >
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\SysWOW64\explorer.exe
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe

< MD5 for: HAL.DLL >
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll

< MD5 for: SCECLI.DLL >
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< MD5 for: SERVICES.EXE >
[2009/07/14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\SysNative\drivers\tcpip.sys
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys

< MD5 for: USERINIT.EXE >
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\SysNative\winlogon.exe
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\root\711100f9\22f28590\*.tmp files -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\root\711100f9\22f28590\*.tmp -> ]
[3 C:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\root\95627ff6\4ee2889b\*.tmp files -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\root\95627ff6\4ee2889b\*.tmp -> ]
[3 C:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\root\ba125001\2967c3b0\*.tmp files -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\root\ba125001\2967c3b0\*.tmp -> ]
[2 C:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\root\f659765d\d4cb7593\*.tmp files -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\root\f659765d\d4cb7593\*.tmp -> ]
[234 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014/06/06 14:28:15 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\abgx360
[2014/12/13 15:38:12 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Adobe
[2013/09/26 09:32:51 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Ahead
[2014/07/15 11:04:10 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Apple Computer
[2015/04/02 11:59:42 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\CodeBlocks
[2014/12/17 14:08:46 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\DAEMON Tools Lite
[2014/06/29 21:44:33 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\dvdcss
[2015/01/19 14:00:19 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\EBookSys
[2013/08/06 09:17:43 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\ESET
[2014/05/27 13:56:51 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\FlvtoConverter
[2013/09/13 16:37:13 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\GHISLER
[2014/07/28 11:40:25 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\HandBrake
[2013/08/05 15:14:06 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Identities
[2013/08/06 07:37:16 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\InstallShield
[2013/08/06 10:11:12 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Macromedia
[2009/07/14 09:45:14 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Media Center Programs
[2015/03/27 12:10:03 | 000,000,000 | --SD | M] -- C:\Users\Lenovo\AppData\Roaming\Microsoft
[2015/03/20 21:03:59 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Microsoft Corporation
[2015/04/20 20:51:28 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Mozilla
[2015/03/20 21:33:54 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\NuGet
[2014/07/12 09:58:49 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\NVIDIA
[2013/08/06 17:27:47 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Opera Software
[2014/09/21 17:11:46 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Origin
[2014/11/30 12:23:52 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\phpDesigner
[2014/11/03 18:21:23 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Remote Control Server
[2014/01/23 03:35:12 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Seznam.cz
[2015/05/19 11:10:22 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Skype
[2014/01/20 01:55:04 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Smart PC Solutions
[2014/07/12 09:58:41 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Sony
[2015/03/13 12:29:40 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Subversion
[2014/07/12 10:39:26 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\TechSmith
[2014/06/02 13:21:52 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Thunderbird
[2015/03/13 13:17:57 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\TortoiseSVN
[2013/09/18 15:00:33 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\TV Online
[2013/09/04 14:28:45 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\Unity
[2014/11/30 12:24:02 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\uTorrent
[2015/05/12 10:17:09 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\vlc
[2013/08/11 11:29:19 | 000,000,000 | ---D | M] -- C:\Users\Lenovo\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014/11/03 18:21:20 | 000,075,264 | ---- | M] (Steppschuh) -- C:\Users\Lenovo\AppData\Roaming\Remote Control Server\Remote Control Server Updater.exe
[2014/11/03 18:21:27 | 005,310,976 | ---- | M] (Steppschuh) -- C:\Users\Lenovo\AppData\Roaming\Remote Control Server\Remote Control Server.exe
[2014/11/28 13:22:09 | 001,130,576 | ---- | M] (BitTorrent Inc.) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe
[2013/08/11 11:26:28 | 001,130,576 | ---- | M] (BitTorrent Inc.) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\updates\3.3.1_30003.exe
[2013/08/30 00:04:52 | 000,888,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\updates\3.3.1_30017.exe
[2014/02/18 13:38:12 | 000,905,296 | ---- | M] (BitTorrent Inc.) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\updates\3.3.2_30488.exe
[2014/06/01 15:14:17 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\updates\3.4.1_31139.exe
[2014/06/23 13:58:41 | 001,267,536 | ---- | M] (BitTorrent Inc.) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\updates\3.4.1_31395.exe
[2014/07/12 09:41:22 | 001,322,832 | ---- | M] (BitTorrent Inc.) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\updates\3.4.2_32126.exe
[2014/09/18 13:34:42 | 001,414,992 | ---- | M] (BitTorrent Inc.) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\updates\3.4.2_33870.exe
[2014/09/20 23:47:42 | 001,419,856 | ---- | M] (BitTorrent Inc.) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\updates\3.4.2_34024.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2009/07/14 03:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2009/07/14 03:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[2009/07/14 03:15:28 | 010,973,696 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll
[2009/07/14 03:15:28 | 000,186,368 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iepeers.dll
[2009/07/14 03:16:19 | 011,406,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wmp.dll

< %systemroot%\Tasks\*.job >
[2015/05/19 10:37:00 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2015/05/19 09:45:36 | 000,000,932 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2015/05/19 09:45:21 | 000,000,932 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d05c94454e154e.job
[2015/05/19 11:14:14 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf91292398cf04.job
[2015/05/19 10:20:00 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfeea97cb5f8de.job
[2015/05/16 07:53:33 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d05c94465facfe.job
[2015/05/19 10:58:10 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f9ca5a5bdf4.job
[2015/05/19 09:45:17 | 000,000,898 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1cf2aee1f37e98e.job
[2015/05/16 15:23:13 | 000,000,898 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1d05c993632b0d8.job
[2015/05/18 15:53:12 | 000,000,898 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000Core1d08fdb7662caae.job
[2015/05/19 10:28:00 | 000,000,950 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000UA1cf8ad8a11d646d.job
[2015/05/19 10:28:00 | 000,000,950 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3413017964-2039321696-1439861226-1000UA1d08fdb77266bac.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2009/07/14 03:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2009/07/14 03:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[2009/07/14 03:15:28 | 010,973,696 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll
[2009/07/14 03:15:28 | 000,186,368 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iepeers.dll
[2009/07/14 03:16:19 | 011,406,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wmp.dll

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Google Update" = "C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe" /c -- [2013/12/20 01:56:30 | 000,116,648 | ---- | M] (Google Inc.)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2009/07/14 03:17:29 | 000,673,048 | ---- | M] (Microsoft Corporation) MD5=2C32E3E596CFE660353753EABEFB0540 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2015/05/05 06:06:54 | 000,812,872 | ---- | M] (Google Inc.) MD5=C1DCF54DA67BA34970C1F9A139F7302B -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2015/05/19 10:33:40 | 000,000,512 | ---- | M] () MD5=5D1C644F4192FC1249E8EF49F991A60A -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2014/02/28 02:26:28 | 000,121,105 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\site-packages\numpy\f2py\crackfortran.py
[2013/09/21 22:20:03 | 000,031,924 | ---- | M] () -- \Users\Lenovo\AppData\Roaming\uTorrent\Adobe Photoshop CS3 + Crack.torrent
[2013/12/09 01:04:46 | 000,005,461 | ---- | M] () -- \Users\Lenovo\AppData\Roaming\uTorrent\Ardamax Keylogger v4.0.5 Basic Edition Incl Crack+Key - [MUMBAI].torrent
[2013/11/22 16:45:19 | 000,005,880 | ---- | M] () -- \Users\Lenovo\AppData\Roaming\uTorrent\CCleaner Professional + Business Edition v4.06.4324 Incl Crack - [MUMBAI].torrent
[2013/08/30 13:11:45 | 000,000,279 | ---- | M] () -- \Users\Lenovo\AppData\Roaming\uTorrent\ESET PureFix v2.03 (Crack).rar.torrent
[2013/10/18 16:08:21 | 000,001,797 | ---- | M] () -- \Users\Lenovo\AppData\Roaming\uTorrent\FlashFXP 4.0.0 Build 1535 + crack+Serial [TrT-TcT].torrent
[2014/07/12 09:41:49 | 000,014,749 | ---- | M] () -- \Users\Lenovo\AppData\Roaming\uTorrent\SONY Vegas PRO 12.0.770 (64-bit) Pre-Cracked - Exµs.torrent
[2013/08/03 09:27:32 | 010,881,484 | ---- | M] () -- \Users\Lenovo\Desktop\-\Music\House\Bassjackers vs. Icona Pop - I Don't Care vs. Crackin' (James Monteros Reboot) (1).mp3
[2000/08/31 19:47:12 | 001,173,558 | ---- | M] () -- \Users\Lenovo\Desktop\HRY\Age Of Empires 2 & The Conquerors Expansion - Full Game\upgrade\crack.zip
[2000/09/01 01:47:12 | 001,173,558 | ---- | M] () -- \Users\Lenovo\Desktop\HRY\aoe2\crack.zip
[2014/09/18 12:54:28 | 010,440,550 | ---- | M] () -- \Users\Lenovo\Downloads\Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC].zip
[2014/01/23 02:57:47 | 012,269,661 | ---- | M] () -- \Users\Lenovo\Downloads\Driver-Genius-Professional-Edition-v10.0.0.712-SK+crack.rar
[2013/12/11 18:14:21 | 029,231,355 | ---- | M] () -- \Users\Lenovo\Downloads\FIFA-14-Crack-Only-V4.rar

< *keygen* /s >
[2014/09/30 00:16:44 | 000,402,944 | ---- | M] () -- \RailsInstaller\Git\bin\ssh-keygen.exe

pokracovanie v dalsom prispevku

Re: Kontrola logu - pomalsi start systemu

Napsal: 19 kvě 2015 15:43
od matyii
< *loader* /s >
[2012/08/08 16:57:36 | 000,034,971 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-3413017964-2039321696-1439861226-1000\$R32OEQS\preloader.png
[2007/03/14 17:10:18 | 000,088,333 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ar_AE\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:20 | 000,025,188 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\cs_CZ\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:26 | 000,032,022 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\da_DK\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:28 | 000,032,216 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\de_DE\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:30 | 000,027,655 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\el_GR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:36 | 000,030,891 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\en_US\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:38 | 000,032,399 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\es_ES\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:42 | 000,032,333 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\fi_FI\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:42 | 000,032,393 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\fr_FR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:46 | 000,022,871 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\he_IL\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:48 | 000,025,272 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\hu_HU\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:50 | 000,032,109 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\it_IT\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:50 | 000,032,441 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ja_JP\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:52 | 000,032,499 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ko_KR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:54 | 000,032,074 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\nb_NO\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:56 | 000,032,110 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\nl_NL\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:58 | 000,024,996 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\pl_PL\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:00 | 000,031,772 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\pt_BR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:02 | 000,024,463 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ro_RO\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:04 | 000,025,054 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ru_RU\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:06 | 000,032,171 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\sv_SE\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:06 | 000,024,411 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\tr_TR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:08 | 000,025,525 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\uk_UA\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:10 | 000,032,741 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\zh_CN\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:10 | 000,032,833 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\zh_TW\Bridge\2.0\images\br_photo_downloader.png
[2007/03/08 16:35:32 | 000,004,239 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Startup Scripts CS3\Adobe Version Cue\VersionCueSDKLoader.jsx
[2006/11/09 22:31:32 | 000,163,840 | ---- | M] () -- \Program Files (x86)\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2013/09/13 19:51:30 | 000,008,827 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2006/10/26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006/10/26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2010/03/19 00:21:56 | 000,063,312 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader80.dll
[2010/03/18 01:17:14 | 000,004,096 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader80.tlb
[2013/06/11 17:53:56 | 000,571,048 | ---- | M] () -- \Program Files (x86)\E-Book Systems\FlipViewer Xpress Creator\Tools\Uploader\FVXUploader.exe
[2013/06/10 16:08:10 | 000,001,305 | ---- | M] () -- \Program Files (x86)\E-Book Systems\FlipViewer Xpress Creator\Tools\Uploader\System\FVXUploader.ini
[2009/10/06 06:08:30 | 000,145,082 | ---- | M] () -- \Program Files (x86)\HP\HP Deskjet 1050 J410 series\bin\HelpViewer\Resources\Loader.gif
[2015/03/10 11:39:44 | 000,000,616 | ---- | M] () -- \Program Files (x86)\Microsoft SDKs\Azure\CLI\node_modules\kuduscript\node_modules\streamline\examples\loader\loader.js
[2015/03/10 11:39:44 | 000,000,586 | ---- | M] () -- \Program Files (x86)\Microsoft SDKs\Azure\CLI\node_modules\kuduscript\node_modules\streamline\examples\loader\loader.md
[2015/03/10 11:39:44 | 000,000,367 | ---- | M] () -- \Program Files (x86)\Microsoft SDKs\Azure\CLI\node_modules\kuduscript\node_modules\streamline\examples\loader\loader2.js
[2015/03/10 11:39:42 | 000,000,616 | ---- | M] () -- \Program Files (x86)\Microsoft SDKs\Azure\CLI\node_modules\streamline\examples\loader\loader.js
[2015/03/10 11:39:42 | 000,000,586 | ---- | M] () -- \Program Files (x86)\Microsoft SDKs\Azure\CLI\node_modules\streamline\examples\loader\loader.md
[2015/03/10 11:39:42 | 000,000,367 | ---- | M] () -- \Program Files (x86)\Microsoft SDKs\Azure\CLI\node_modules\streamline\examples\loader\loader2.js
[2015/03/28 05:44:50 | 001,176,208 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2014/06/10 16:42:34 | 000,065,344 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2014/06/10 16:42:34 | 000,067,904 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2014/06/10 16:42:30 | 000,070,464 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2014/06/10 16:42:30 | 000,085,312 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2015/03/13 12:54:34 | 000,000,948 | ---- | M] () -- \Program Files\Java\jdk1.8.0_40\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml
[2015/03/13 12:54:35 | 000,000,411 | ---- | M] () -- \Program Files\Java\jdk1.8.0_40\lib\visualvm\platform\config\Modules\org-openide-loaders.xml
[2015/03/13 12:54:36 | 001,216,932 | ---- | M] () -- \Program Files\Java\jdk1.8.0_40\lib\visualvm\platform\modules\org-openide-loaders.jar
[2015/03/13 12:54:36 | 000,006,276 | ---- | M] () -- \Program Files\Java\jdk1.8.0_40\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar
[2015/03/13 12:54:36 | 000,005,832 | ---- | M] () -- \Program Files\Java\jdk1.8.0_40\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar
[2015/03/13 12:54:36 | 000,000,456 | ---- | M] () -- \Program Files\Java\jdk1.8.0_40\lib\visualvm\platform\update_tracking\org-openide-loaders.xml
[2013/05/16 16:41:22 | 001,152,288 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{779214F8-2DC5-4755-A0D3-4F5423253A23}\ExtensionLoader.dll
[2015/03/28 05:45:01 | 000,905,872 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{CD76452B-BE10-4698-B31E-1DDFE856CC88}\NVDownloader.dll
[2015/03/28 05:43:42 | 000,028,515 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{CD76452B-BE10-4698-B31E-1DDFE856CC88}\NVI2DownloaderExt.CFG
[2015/03/28 05:45:01 | 000,850,576 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{CD76452B-BE10-4698-B31E-1DDFE856CC88}\NVI2DownloaderExt.DLL
[2013/10/05 16:33:54 | 000,008,528 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\grass\grass-6.4.3\etc\python\grass\lib\ctypes_loader.py
[2013/10/05 16:33:54 | 000,008,364 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\grass\grass-6.4.3\etc\python\grass\lib\ctypes_loader.pyc
[2012/10/27 14:34:48 | 000,056,320 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\site-packages\isapi\PyISAPI_loader.dll
[2014/05/13 09:27:34 | 000,017,036 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\site-packages\jinja2-2.7.2-py2.7.egg\jinja2\loaders.py
[2014/09/29 11:53:52 | 000,020,789 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\site-packages\jinja2-2.7.2-py2.7.egg\jinja2\loaders.pyc
[2014/05/13 09:27:34 | 000,008,162 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\site-packages\jinja2-2.7.2-py2.7.egg\jinja2\testsuite\loader.py
[2009/11/25 21:49:20 | 000,002,363 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\site-packages\OpenGL\platform\ctypesloader.py
[2013/08/10 17:20:56 | 000,002,837 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\site-packages\OpenGL\platform\ctypesloader.pyc
[2013/06/16 16:09:32 | 000,003,094 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\site-packages\PyQt4\uic\Loader\loader.py
[2012/10/27 14:28:20 | 000,008,192 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\site-packages\win32\_win32sysloader.pyd
[2011/03/08 09:46:56 | 000,013,734 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\unittest\loader.py
[2014/09/29 11:54:02 | 000,011,726 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\Lib\unittest\loader.pyc
[2013/06/16 16:09:30 | 000,002,013 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\Python27\sip\QtCore\qpluginloader.sip
[2014/06/27 14:14:48 | 000,002,426 | ---- | M] () -- \Program Files\QGIS Chugiak\apps\qgis\python\plugins\processing\algs\otb\description\doc\OSMDownloader.html
[2012/10/27 14:34:54 | 000,008,704 | ---- | M] () -- \Program Files\QGIS Chugiak\bin\pythoncomloader27.dll
[6 \Program Files\QGIS Chugiak\bin\*.tmp files -> \Program Files\QGIS Chugiak\bin\*.tmp -> ]
[2013/06/07 07:16:52 | 000,003,268 | ---- | M] () -- \Program Files\QGIS Chugiak\include\qt4\Qt\qpluginloader.h
[2013/06/07 07:16:40 | 000,000,028 | ---- | M] () -- \Program Files\QGIS Chugiak\include\qt4\QtCore\QPluginLoader
[2013/06/07 07:16:52 | 000,003,268 | ---- | M] () -- \Program Files\QGIS Chugiak\include\qt4\QtCore\qpluginloader.h
[2013/06/07 07:16:40 | 000,000,024 | ---- | M] () -- \Program Files\QGIS Chugiak\include\qt4\QtUiTools\QUiLoader
[2013/06/07 07:17:00 | 000,003,660 | ---- | M] () -- \Program Files\QGIS Chugiak\include\qt4\QtUiTools\quiloader.h
[2011/03/02 12:39:56 | 000,054,784 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2015/01/16 10:28:35 | 000,002,669 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\E-Book Systems\FlipViewer Xpress Creator\FlipViewer Xpress Creator Uploader.lnk
[2011/04/27 06:23:42 | 000,011,093 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\AutoLoader.pm
[2011/04/27 06:24:02 | 000,012,634 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\SelfLoader.pm
[2011/04/27 06:23:56 | 000,001,277 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\Locale\Maketext\GutsLoader.pm
[2011/04/27 06:25:12 | 000,000,687 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\msys\ByteLoader.pm
[2011/04/27 06:25:18 | 000,028,128 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\msys\DynaLoader.pm
[2011/04/27 06:25:22 | 000,010,462 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\msys\XSLoader.pm
[2011/04/27 06:25:22 | 000,000,000 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\msys\auto\ByteLoader\ByteLoader.bs
[2011/04/27 06:25:22 | 000,023,552 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\msys\auto\ByteLoader\ByteLoader.dll
[2011/04/27 06:25:22 | 000,004,418 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\msys\auto\ByteLoader\libByteLoader.dll.a
[2011/04/27 06:25:24 | 000,008,274 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\5.8\msys\auto\DynaLoader\DynaLoader.a
[2011/04/27 06:26:56 | 000,000,736 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\vendor_perl\5.8\Pod\Coverage\Overloader.pm
[2011/04/27 06:27:08 | 000,023,791 | ---- | M] () -- \RailsInstaller\DevKit\lib\perl5\vendor_perl\5.8\YAML\Loader.pm
[2012/09/20 19:34:04 | 000,013,734 | ---- | M] () -- \RailsInstaller\DevKit\mingw\bin\lib\unittest\loader.py
[2010/09/25 21:16:16 | 000,006,076 | ---- | M] () -- \RailsInstaller\DevKit\mingw\share\libtool\libltdl\lt_dlloader.c
[2010/09/25 21:16:16 | 000,003,200 | ---- | M] () -- \RailsInstaller\DevKit\mingw\share\libtool\libltdl\libltdl\lt_dlloader.h
[2013/09/07 12:20:42 | 000,011,093 | ---- | M] () -- \RailsInstaller\Git\lib\perl5\5.8.8\AutoLoader.pm
[2013/09/07 12:20:42 | 000,012,634 | ---- | M] () -- \RailsInstaller\Git\lib\perl5\5.8.8\SelfLoader.pm
[2013/09/07 12:20:42 | 000,001,277 | ---- | M] () -- \RailsInstaller\Git\lib\perl5\5.8.8\Locale\Maketext\GutsLoader.pm
[2013/09/07 12:20:42 | 000,000,687 | ---- | M] () -- \RailsInstaller\Git\lib\perl5\5.8.8\msys\ByteLoader.pm
[2013/09/07 12:20:42 | 000,028,128 | ---- | M] () -- \RailsInstaller\Git\lib\perl5\5.8.8\msys\DynaLoader.pm
[2013/09/07 12:20:42 | 000,010,462 | ---- | M] () -- \RailsInstaller\Git\lib\perl5\5.8.8\msys\XSLoader.pm
[2013/09/07 12:20:42 | 000,000,000 | ---- | M] () -- \RailsInstaller\Git\lib\perl5\5.8.8\msys\auto\ByteLoader\ByteLoader.bs
[2014/08/14 17:28:32 | 000,021,504 | ---- | M] () -- \RailsInstaller\Git\lib\perl5\5.8.8\msys\auto\ByteLoader\ByteLoader.dll
[2014/11/16 02:12:22 | 000,002,801 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\2.1.0\irb\ext\loader.rb
[2014/11/16 02:12:24 | 000,001,660 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\2.1.0\irb\ext\use-loader.rb
[2014/11/16 02:12:24 | 000,001,925 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\2.1.0\psych\class_loader.rb
[2014/11/16 02:12:24 | 000,000,164 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\2.1.0\rake\default_loader.rb
[2014/11/16 02:12:24 | 000,000,341 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\2.1.0\rake\rake_test_loader.rb
[2015/05/04 17:47:18 | 000,003,031 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\actionpack-4.1.0\lib\action_dispatch\middleware\reloader.rb
[2014/11/25 19:06:24 | 000,003,031 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\actionpack-4.1.8\lib\action_dispatch\middleware\reloader.rb
[2015/05/04 21:59:08 | 000,003,031 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\actionpack-4.2.1\lib\action_dispatch\middleware\reloader.rb
[2015/05/04 17:47:38 | 000,008,662 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\activerecord-4.1.0\lib\active_record\associations\preloader.rb
[2014/11/25 19:06:32 | 000,007,835 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\activerecord-4.1.8\lib\active_record\associations\preloader.rb
[2015/05/04 21:59:17 | 000,007,947 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\activerecord-4.2.1\lib\active_record\associations\preloader.rb
[2014/11/25 19:06:36 | 000,007,449 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\mime-types-2.4.3\lib\mime\types\loader.rb
[2014/11/25 19:06:36 | 000,000,715 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\mime-types-2.4.3\lib\mime\types\loader_path.rb
[2014/11/25 19:06:36 | 000,001,612 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\mime-types-2.4.3\test\test_mime_types_loader.rb
[2015/04/29 15:55:01 | 000,007,449 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\mime-types-2.5\lib\mime\types\loader.rb
[2015/04/29 15:55:01 | 000,000,715 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\mime-types-2.5\lib\mime\types\loader_path.rb
[2015/04/29 15:55:01 | 000,001,612 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\mime-types-2.5\test\test_mime_types_loader.rb
[2014/11/25 19:06:14 | 000,003,042 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rack-1.5.2\lib\rack\reloader.rb
[2014/11/25 19:06:14 | 000,000,298 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rack-1.5.2\test\gemloader.rb
[2015/05/04 21:59:06 | 000,003,042 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rack-1.6.0\lib\rack\reloader.rb
[2015/05/04 21:59:06 | 000,000,298 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rack-1.6.0\test\gemloader.rb
[2015/05/04 17:47:47 | 000,001,950 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\railties-4.1.0\lib\rails\app_rails_loader.rb
[2015/05/04 17:47:47 | 000,001,087 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\railties-4.1.0\lib\rails\application\routes_reloader.rb
[2014/11/25 19:06:50 | 000,001,950 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\railties-4.1.8\lib\rails\app_rails_loader.rb
[2014/11/25 19:06:50 | 000,001,087 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\railties-4.1.8\lib\rails\application\routes_reloader.rb
[2015/05/04 21:59:40 | 000,001,957 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\railties-4.2.1\lib\rails\app_rails_loader.rb
[2015/05/04 21:59:40 | 000,001,087 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\railties-4.2.1\lib\rails\application\routes_reloader.rb
[2015/05/04 17:46:49 | 000,000,235 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.3.1\lib\rake\default_loader.rb
[2015/05/04 17:46:49 | 000,000,341 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.3.1\lib\rake\rake_test_loader.rb
[2015/05/04 17:46:49 | 000,001,134 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.3.1\test\test_rake_makefile_loader.rb
[2015/05/04 17:46:49 | 000,000,430 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.3.1\test\test_rake_rake_test_loader.rb
[2014/11/25 19:04:02 | 000,000,235 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.4.0\lib\rake\default_loader.rb
[2014/11/25 19:04:02 | 000,000,341 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.4.0\lib\rake\rake_test_loader.rb
[2014/11/25 19:04:02 | 000,001,134 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.4.0\test\test_rake_makefile_loader.rb
[2014/11/25 19:04:02 | 000,000,430 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.4.0\test\test_rake_rake_test_loader.rb
[2015/04/29 15:54:34 | 000,000,235 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.4.2\lib\rake\default_loader.rb
[2015/04/29 15:54:34 | 000,000,341 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.4.2\lib\rake\rake_test_loader.rb
[2015/04/29 15:54:34 | 000,001,134 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.4.2\test\test_rake_makefile_loader.rb
[2015/04/29 15:54:34 | 000,000,430 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\rake-10.4.2\test\test_rake_rake_test_loader.rb
[2014/11/25 19:06:58 | 000,005,291 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\sprockets-3.0.0.beta.4\lib\sprockets\loader.rb
[2015/05/04 21:59:44 | 000,005,432 | ---- | M] () -- \RailsInstaller\Ruby2.1.0\lib\ruby\gems\2.1.0\gems\sprockets-3.0.3\lib\sprockets\loader.rb
[2013/05/14 19:30:40 | 000,001,925 | ---- | M] () -- \ruby-2.1.0\ext\psych\lib\psych\class_loader.rb
[2012/11/28 06:35:40 | 000,011,349 | ---- | M] () -- \ruby-2.1.0\ext\psych\yaml\loader.c
[2012/12/21 07:45:50 | 000,002,801 | ---- | M] () -- \ruby-2.1.0\lib\irb\ext\loader.rb
[2012/12/21 07:45:50 | 000,001,660 | ---- | M] () -- \ruby-2.1.0\lib\irb\ext\use-loader.rb
[2011/06/24 00:11:56 | 000,000,164 | ---- | M] () -- \ruby-2.1.0\lib\rake\default_loader.rb
[2011/06/28 04:45:30 | 000,000,341 | ---- | M] () -- \ruby-2.1.0\lib\rake\rake_test_loader.rb
[2013/10/11 23:35:02 | 000,001,134 | ---- | M] () -- \ruby-2.1.0\test\rake\test_rake_makefile_loader.rb
[2013/10/11 23:35:02 | 000,000,430 | ---- | M] () -- \ruby-2.1.0\test\rake\test_rake_rake_test_loader.rb
[2014/08/24 02:16:24 | 000,003,174 | ---- | M] () -- \Ruby22-x64\lib\ruby\2.2.0\irb\ext\loader.rb
[2014/08/08 20:36:48 | 000,001,758 | ---- | M] () -- \Ruby22-x64\lib\ruby\2.2.0\irb\ext\use-loader.rb
[2015/04/16 01:30:44 | 000,001,925 | ---- | M] () -- \Ruby22-x64\lib\ruby\2.2.0\psych\class_loader.rb
[2014/07/14 22:07:36 | 000,000,235 | ---- | M] () -- \Ruby22-x64\lib\ruby\2.2.0\rake\default_loader.rb
[2011/06/27 21:45:28 | 000,000,341 | ---- | M] () -- \Ruby22-x64\lib\ruby\2.2.0\rake\rake_test_loader.rb
[2015/04/29 15:46:48 | 000,000,747 | ---- | M] () -- \Ruby22-x64\lib\ruby\gems\2.2.0\doc\rubygems-2.2.3\ri\Gem\LoadError\cdesc-LoadError.ri
[2015/01/16 10:28:35 | 000,002,669 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\E-Book Systems\FlipViewer Xpress Creator\FlipViewer Xpress Creator Uploader.lnk
[2013/09/19 15:08:37 | 000,003,746 | ---- | M] () -- \Users\Lenovo\AppData\Local\SRDownloader.err
[2013/09/30 15:00:47 | 000,001,080 | ---- | M] () -- \Users\Lenovo\AppData\Local\SRDownloader.nast
[2014/10/22 09:39:58 | 000,485,440 | ---- | M] () -- \Users\Lenovo\AppData\Local\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe
[2014/10/22 09:20:42 | 000,004,531 | ---- | M] () -- \Users\Lenovo\AppData\Local\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe.config
[2014/10/23 16:27:56 | 000,176,231 | ---- | M] () -- \Users\Lenovo\AppData\Local\Flvto Youtube Downloader\UninstallFlvtoYoutubeDownloader.exe
[2014/10/22 09:39:56 | 000,019,520 | ---- | M] () -- \Users\Lenovo\AppData\Local\Flvto Youtube Downloader\de-DE\FlvtoYoutubeDownloader.resources.dll
[2014/10/22 09:39:58 | 000,018,496 | ---- | M] () -- \Users\Lenovo\AppData\Local\Flvto Youtube Downloader\en-US\FlvtoYoutubeDownloader.resources.dll
[2014/10/22 09:39:58 | 000,019,520 | ---- | M] () -- \Users\Lenovo\AppData\Local\Flvto Youtube Downloader\it-IT\FlvtoYoutubeDownloader.resources.dll
[2014/10/22 09:40:00 | 000,019,520 | ---- | M] () -- \Users\Lenovo\AppData\Local\Flvto Youtube Downloader\pt-PT\FlvtoYoutubeDownloader.resources.dll
[2014/08/13 13:14:30 | 000,009,418 | ---- | M] () -- \Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.33_0\img\gifloader.gif
[2015/03/20 21:04:08 | 000,024,784 | ---- | M] () -- \Users\Lenovo\AppData\Local\Microsoft\WebMatrix\Extensions\30\TFSSourceControl\Microsoft.TeamFoundation.WorkItemTracking.Client.DataStoreLoader.dll
[2015/03/25 22:19:32 | 000,019,121 | ---- | M] () -- \Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0F0FTHAK\AdLoader-288a31a04e1398b1a794975bf93ce9a4.min[1].js
[2015/01/27 13:55:53 | 000,001,980 | ---- | M] () -- \Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7Q7XVFIC\AdLoader[2].htm
[2015/05/13 13:33:51 | 000,001,980 | ---- | M] () -- \Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BL2DCI7G\AdLoader[1].htm
[2015/05/11 11:29:27 | 000,019,121 | ---- | M] () -- \Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YR87ZDR4\AdLoader-288a31a04e1398b1a794975bf93ce9a4.min[1].js
[2015/03/12 11:47:42 | 000,072,638 | ---- | M] () -- \Users\Lenovo\AppData\Local\Skype\Apps\login\images\loader.gif
[2015/03/12 11:47:42 | 000,003,032 | ---- | M] () -- \Users\Lenovo\AppData\Local\Skype\Apps\login\images\loader.png
[2015/03/12 11:47:42 | 000,006,012 | ---- | M] () -- \Users\Lenovo\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2015/03/12 11:47:42 | 000,021,956 | ---- | M] () -- \Users\Lenovo\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2015/03/12 11:47:42 | 000,009,772 | ---- | M] () -- \Users\Lenovo\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2014/12/13 02:12:54 | 001,173,136 | ---- | M] () -- \Users\Lenovo\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\16.18.9.0\GFExperience\ExtensionLoader.dll
[2014/12/13 02:13:04 | 000,888,464 | ---- | M] () -- \Users\Lenovo\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\16.18.9.0\NVI2\NVDownloader.dll
[2014/12/13 02:12:12 | 000,028,515 | ---- | M] () -- \Users\Lenovo\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\16.18.9.0\NVI2\NVI2DownloaderExt.CFG
[2014/12/13 02:13:05 | 000,850,576 | ---- | M] () -- \Users\Lenovo\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\16.18.9.0\NVI2\NVI2DownloaderExt.DLL
[2015/03/28 05:44:50 | 001,176,208 | ---- | M] () -- \Users\Lenovo\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\18.4.1.0\GFExperience\ExtensionLoader.dll
[2015/03/28 05:45:01 | 000,905,872 | ---- | M] () -- \Users\Lenovo\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\18.4.1.0\NVI2\NVDownloader.dll
[2015/03/28 05:43:42 | 000,028,515 | ---- | M] () -- \Users\Lenovo\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\18.4.1.0\NVI2\NVI2DownloaderExt.CFG
[2015/03/28 05:45:01 | 000,850,576 | ---- | M] () -- \Users\Lenovo\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\18.4.1.0\NVI2\NVI2DownloaderExt.DLL
[2014/10/23 16:27:55 | 000,002,196 | ---- | M] () -- \Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flvto Youtube Downloader\Flvto Youtube Downloader.lnk
[2014/10/23 16:27:56 | 000,001,260 | ---- | M] () -- \Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flvto Youtube Downloader\Uninstall Flvto Youtube Downloader.lnk
[2015/03/15 20:06:30 | 000,003,686 | ---- | M] () -- \Users\Lenovo\Desktop\Škola\INTE\cakephp-2.6.3\lib\Cake\TestSuite\CakeTestLoader.php
[2014/05/16 14:04:42 | 000,003,561 | ---- | M] () -- \Users\Lenovo\Desktop\Škola\INTE\hlasovanie\lib\Cake\TestSuite\CakeTestLoader.php
[2013/07/24 11:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\enclosed\core\images\prettyphoto\dark_rounded\loader.gif
[2013/07/24 11:30:08 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\enclosed\core\images\prettyphoto\dark_square\loader.gif
[2013/07/24 11:30:12 | 000,006,331 | ---- | M] () -- \Users\Lenovo\Desktop\work\enclosed\core\images\prettyphoto\default\loader.gif
[2013/07/24 11:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\enclosed\core\images\prettyphoto\facebook\loader.gif
[2013/07/24 11:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\enclosed\core\images\prettyphoto\light_rounded\loader.gif
[2013/07/24 11:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\enclosed\core\images\prettyphoto\light_square\loader.gif
[2013/07/24 11:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-content\themes\enclosed\core\images\prettyphoto\dark_rounded\loader.gif
[2013/07/24 11:30:08 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-content\themes\enclosed\core\images\prettyphoto\dark_square\loader.gif
[2013/07/24 11:30:12 | 000,006,331 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-content\themes\enclosed\core\images\prettyphoto\default\loader.gif
[2013/07/24 11:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-content\themes\enclosed\core\images\prettyphoto\facebook\loader.gif
[2013/07/24 11:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-content\themes\enclosed\core\images\prettyphoto\light_rounded\loader.gif
[2013/07/24 11:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-content\themes\enclosed\core\images\prettyphoto\light_square\loader.gif
[2014/05/31 11:21:32 | 000,048,979 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-includes\script-loader.php
[2013/10/30 14:39:10 | 000,002,823 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-includes\template-loader.php
[2014/02/13 08:03:14 | 000,003,878 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-includes\images\uploader-icons-2x.png
[2014/02/13 08:03:14 | 000,001,556 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-includes\images\uploader-icons.png
[2013/11/15 04:31:10 | 000,004,281 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-includes\js\customize-loader.js
[2013/11/13 21:45:12 | 000,002,539 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-includes\js\customize-loader.min.js
[2013/12/28 23:53:16 | 000,002,608 | ---- | M] () -- \Users\Lenovo\Desktop\work\fb\wp-includes\js\tinymce\skins\lightgray\img\loader.gif
[2013/07/24 10:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\illustrious\core\images\prettyphoto\dark_rounded\loader.gif
[2013/07/24 10:30:08 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\illustrious\core\images\prettyphoto\dark_square\loader.gif
[2013/07/24 10:30:12 | 000,006,331 | ---- | M] () -- \Users\Lenovo\Desktop\work\illustrious\core\images\prettyphoto\default\loader.gif
[2013/07/24 10:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\illustrious\core\images\prettyphoto\facebook\loader.gif
[2013/07/24 10:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\illustrious\core\images\prettyphoto\light_rounded\loader.gif
[2013/07/24 10:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\illustrious\core\images\prettyphoto\light_square\loader.gif
[2011/12/20 02:07:58 | 000,012,272 | ---- | M] () -- \Users\Lenovo\Desktop\work\swatch\functions\admin-medialibrary-uploader.php
[2011/08/24 05:29:48 | 000,000,457 | ---- | M] () -- \Users\Lenovo\Desktop\work\swatch\functions\images\ajax-loader.gif
[2011/10/31 07:36:38 | 000,006,313 | ---- | M] () -- \Users\Lenovo\Desktop\work\swatch\functions\js\woo-medialibrary-uploader.js
[2011/08/22 09:49:56 | 000,006,331 | ---- | M] () -- \Users\Lenovo\Desktop\work\swatch\includes\images\prettyPhoto\default\loader.gif
[2011/07/28 00:00:00 | 000,010,819 | ---- | M] () -- \Users\Lenovo\Desktop\work\Tutovky.info\modules\ctools\ctools_ajax_sample\images\ajax-loader.gif
[2014/04/14 00:07:16 | 000,047,946 | ---- | M] () -- \Users\Lenovo\Desktop\work\wood\wp-includes\script-loader.php
[2013/10/30 14:39:10 | 000,002,747 | ---- | M] () -- \Users\Lenovo\Desktop\work\wood\wp-includes\template-loader.php
[2014/02/13 08:03:14 | 000,003,878 | ---- | M] () -- \Users\Lenovo\Desktop\work\wood\wp-includes\images\uploader-icons-2x.png
[2014/02/13 08:03:14 | 000,001,556 | ---- | M] () -- \Users\Lenovo\Desktop\work\wood\wp-includes\images\uploader-icons.png
[2013/11/15 04:31:10 | 000,004,281 | ---- | M] () -- \Users\Lenovo\Desktop\work\wood\wp-includes\js\customize-loader.js
[2013/11/13 21:45:12 | 000,002,539 | ---- | M] () -- \Users\Lenovo\Desktop\work\wood\wp-includes\js\customize-loader.min.js
[2013/12/28 23:53:16 | 000,002,608 | ---- | M] () -- \Users\Lenovo\Desktop\work\wood\wp-includes\js\tinymce\skins\lightgray\img\loader.gif
[2014/05/22 13:46:08 | 000,003,915 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\plugins\nextgen-gallery\products\photocrati_nextgen\modules\attach_to_post\static\uploader-icons-2x.png
[2014/05/22 13:46:08 | 000,001,593 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\plugins\nextgen-gallery\products\photocrati_nextgen\modules\attach_to_post\static\uploader-icons.png
[2014/05/22 13:46:08 | 000,000,668 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\plugins\nextgen-gallery\products\photocrati_nextgen\modules\lightbox\static\highslide\graphics\loader.gif
[2014/05/22 13:46:08 | 000,000,673 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\plugins\nextgen-gallery\products\photocrati_nextgen\modules\lightbox\static\highslide\graphics\loader.white.gif
[2014/05/22 13:46:08 | 000,000,673 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\plugins\nextgen-gallery\products\photocrati_nextgen\modules\ngglegacy\images\ajax-loader.gif
[2014/05/22 13:46:08 | 000,006,820 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\plugins\nextgen-gallery\products\photocrati_nextgen\modules\ngglegacy\images\loader.gif
[2013/07/24 10:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\themes\illustrious\core\images\prettyphoto\dark_rounded\loader.gif
[2013/07/24 10:30:08 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\themes\illustrious\core\images\prettyphoto\dark_square\loader.gif
[2013/07/24 10:30:12 | 000,006,331 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\themes\illustrious\core\images\prettyphoto\default\loader.gif
[2013/07/24 10:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\themes\illustrious\core\images\prettyphoto\facebook\loader.gif
[2013/07/24 10:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\themes\illustrious\core\images\prettyphoto\light_rounded\loader.gif
[2013/07/24 10:30:12 | 000,002,545 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-content\themes\illustrious\core\images\prettyphoto\light_square\loader.gif
[2014/05/24 13:08:34 | 000,048,979 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-includes\script-loader.php
[2013/10/30 14:39:10 | 000,002,823 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-includes\template-loader.php
[2014/02/13 08:03:14 | 000,003,878 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-includes\images\uploader-icons-2x.png
[2014/02/13 08:03:14 | 000,001,556 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-includes\images\uploader-icons.png
[2013/11/15 04:31:10 | 000,004,281 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-includes\js\customize-loader.js
[2013/11/13 21:45:12 | 000,002,539 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-includes\js\customize-loader.min.js
[2013/12/28 23:53:16 | 000,002,608 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodiann\wood\wp-includes\js\tinymce\skins\lightgray\img\loader.gif
[2014/06/03 20:15:28 | 000,015,512 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodinn\google-sitemap-generator\sitemap-loader.php
[2014/05/22 13:46:08 | 000,003,915 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodinn\nextgen-gallery\products\photocrati_nextgen\modules\attach_to_post\static\uploader-icons-2x.png
[2014/05/22 13:46:08 | 000,001,593 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodinn\nextgen-gallery\products\photocrati_nextgen\modules\attach_to_post\static\uploader-icons.png
[2014/05/22 13:46:08 | 000,000,668 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodinn\nextgen-gallery\products\photocrati_nextgen\modules\lightbox\static\highslide\graphics\loader.gif
[2014/05/22 13:46:08 | 000,000,673 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodinn\nextgen-gallery\products\photocrati_nextgen\modules\lightbox\static\highslide\graphics\loader.white.gif
[2014/05/22 13:46:08 | 000,000,673 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodinn\nextgen-gallery\products\photocrati_nextgen\modules\ngglegacy\images\ajax-loader.gif
[2014/05/22 13:46:08 | 000,006,820 | ---- | M] () -- \Users\Lenovo\Desktop\work\woodinn\nextgen-gallery\products\photocrati_nextgen\modules\ngglegacy\images\loader.gif
[2014/03/07 16:30:41 | 000,237,016 | ---- | M] () -- \Users\Lenovo\Downloads\file_installer_downloader-00WLM4Ta.exe
[2013/09/17 17:19:06 | 000,905,728 | ---- | M] () -- \Users\Lenovo\Downloads\SRDownloader.exe
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009/07/14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009/07/14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/09/22 10:54:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009/09/22 10:54:51 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009/09/22 10:54:51 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009/09/22 10:54:51 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009/09/22 10:54:51 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009/09/22 11:58:55 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_el-gr_d2330346fdec39e3.manifest
[2009/09/22 11:58:55 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_el-gr_d2330346fdec39e3_winload.efi.mui_35ee487d
[2009/09/22 11:58:55 | 000,036,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_el-gr_d2330346fdec39e3_winload.exe.mui_3bc5b827
[2009/09/22 11:58:55 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_el-gr_d2330346fdec39e3_winresume.efi.mui_f412814e
[2009/09/22 11:58:55 | 000,031,312 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_el-gr_d2330346fdec39e3_winresume.exe.mui_ff8b5358
[2009/07/14 07:37:37 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009/07/14 07:37:37 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.efi.mui_35ee487d
[2009/07/14 07:37:37 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.exe.mui_3bc5b827
[2009/07/14 07:37:37 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.efi.mui_f412814e
[2009/07/14 07:37:37 | 000,029,760 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.exe.mui_ff8b5358
[2009/09/22 12:45:45 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_hu-hu_bc80fed7d50db43d.manifest
[2009/09/22 12:45:45 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_hu-hu_bc80fed7d50db43d_winload.efi.mui_35ee487d
[2009/09/22 12:45:45 | 000,035,392 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_hu-hu_bc80fed7d50db43d_winload.exe.mui_3bc5b827
[2009/09/22 12:45:45 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_hu-hu_bc80fed7d50db43d_winresume.efi.mui_f412814e
[2009/09/22 12:45:45 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_hu-hu_bc80fed7d50db43d_winresume.exe.mui_ff8b5358
[2009/09/22 11:34:28 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_nl-nl_8b999d0b86bcd921.manifest
[2009/09/22 11:34:29 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_nl-nl_8b999d0b86bcd921_winload.efi.mui_35ee487d
[2009/09/22 11:34:29 | 000,035,408 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_nl-nl_8b999d0b86bcd921_winload.exe.mui_3bc5b827
[2009/09/22 11:34:29 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_nl-nl_8b999d0b86bcd921_winresume.efi.mui_f412814e
[2009/09/22 11:34:29 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_nl-nl_8b999d0b86bcd921_winresume.exe.mui_ff8b5358
[2009/09/22 09:28:58 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pl-pl_d1d5f78d6bdf46d5.manifest
[2009/09/22 09:28:58 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pl-pl_d1d5f78d6bdf46d5_winload.efi.mui_35ee487d
[2009/09/22 09:28:59 | 000,035,904 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pl-pl_d1d5f78d6bdf46d5_winload.exe.mui_3bc5b827
[2009/09/22 09:28:59 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pl-pl_d1d5f78d6bdf46d5_winresume.efi.mui_f412814e
[2009/09/22 09:28:59 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pl-pl_d1d5f78d6bdf46d5_winresume.exe.mui_ff8b5358
[2009/09/22 08:42:34 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pt-pt_d50bb19d69d84a95.manifest
[2009/09/22 08:42:34 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pt-pt_d50bb19d69d84a95_winload.efi.mui_35ee487d
[2009/09/22 08:42:34 | 000,035,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pt-pt_d50bb19d69d84a95_winload.exe.mui_3bc5b827
[2009/09/22 08:42:34 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pt-pt_d50bb19d69d84a95_winresume.efi.mui_f412814e
[2009/09/22 08:42:34 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pt-pt_d50bb19d69d84a95_winresume.exe.mui_ff8b5358
[2009/09/22 09:00:00 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_1baec3614eb9d8c1.manifest
[2009/09/22 09:00:00 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_1baec3614eb9d8c1_winload.efi.mui_35ee487d
[2009/09/22 09:00:00 | 000,034,880 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_1baec3614eb9d8c1_winload.exe.mui_3bc5b827
[2009/09/22 09:00:00 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_1baec3614eb9d8c1_winresume.efi.mui_f412814e
[2009/09/22 09:00:00 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_1baec3614eb9d8c1_winresume.exe.mui_ff8b5358
[2009/07/14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009/07/14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009/07/14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009/07/14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009/07/14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009/07/14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009/09/22 10:43:38 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009/09/22 11:49:41 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_el-gr_d2330346fdec39e3.manifest
[2009/07/14 04:44:20 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009/09/22 12:35:32 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_hu-hu_bc80fed7d50db43d.manifest
[2009/09/22 11:24:31 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_nl-nl_8b999d0b86bcd921.manifest
[2009/09/22 09:08:16 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pl-pl_d1d5f78d6bdf46d5.manifest
[2009/09/22 08:35:17 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_pt-pt_d50bb19d69d84a95.manifest
[2009/09/22 08:53:50 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_1baec3614eb9d8c1.manifest
[2009/07/14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009/07/14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2015/03/15 20:06:30 | 000,003,686 | ---- | M] () -- \xampp\htdocs\cake\lib\Cake\TestSuite\CakeTestLoader.php
[2015/03/15 20:06:30 | 000,003,686 | ---- | M] () -- \xampp\htdocs\cphp\lib\Cake\TestSuite\CakeTestLoader.php
[2015/02/10 01:46:24 | 000,048,442 | ---- | M] () -- \xampp\htdocs\wordpress\wp-includes\script-loader.php
[2013/10/30 14:39:10 | 000,002,747 | ---- | M] () -- \xampp\htdocs\wordpress\wp-includes\template-loader.php
[2014/10/28 22:02:22 | 000,003,542 | ---- | M] () -- \xampp\htdocs\wordpress\wp-includes\images\uploader-icons-2x.png
[2014/02/13 08:03:14 | 000,001,556 | ---- | M] () -- \xampp\htdocs\wordpress\wp-includes\images\uploader-icons.png
[2014/11/11 22:29:24 | 000,006,601 | ---- | M] () -- \xampp\htdocs\wordpress\wp-includes\js\customize-loader.js
[2014/11/11 22:29:24 | 000,003,113 | ---- | M] () -- \xampp\htdocs\wordpress\wp-includes\js\customize-loader.min.js
[2013/12/28 23:53:16 | 000,002,608 | ---- | M] () -- \xampp\htdocs\wordpress\wp-includes\js\tinymce\skins\lightgray\img\loader.gif
[2015/02/10 01:46:24 | 000,048,442 | ---- | M] () -- \xampp\htdocs\wp\wp-includes\script-loader.php
[2013/10/30 14:39:10 | 000,002,747 | ---- | M] () -- \xampp\htdocs\wp\wp-includes\template-loader.php
[2014/10/28 22:02:22 | 000,003,542 | ---- | M] () -- \xampp\htdocs\wp\wp-includes\images\uploader-icons-2x.png
[2014/02/13 08:03:14 | 000,001,556 | ---- | M] () -- \xampp\htdocs\wp\wp-includes\images\uploader-icons.png
[2014/11/11 22:29:24 | 000,006,601 | ---- | M] () -- \xampp\htdocs\wp\wp-includes\js\customize-loader.js
[2014/11/11 22:29:24 | 000,003,113 | ---- | M] () -- \xampp\htdocs\wp\wp-includes\js\customize-loader.min.js
[2013/12/28 23:53:16 | 000,002,608 | ---- | M] () -- \xampp\htdocs\wp\wp-includes\js\tinymce\skins\lightgray\img\loader.gif
[2013/03/30 13:29:00 | 000,008,192 | ---- | M] () -- \xampp\mailtodisk\_win32sysloader.pyd
[2012/04/16 19:30:20 | 000,068,096 | ---- | M] () -- \xampp\MercuryMail\loader.exe
[2012/10/16 18:45:46 | 000,015,791 | ---- | M] () -- \xampp\perl\lib\AutoLoader.pm
[2013/03/12 16:01:48 | 000,025,696 | ---- | M] () -- \xampp\perl\lib\DynaLoader.pm
[2013/03/04 18:16:22 | 000,017,377 | ---- | M] () -- \xampp\perl\lib\SelfLoader.pm
[2013/03/12 16:00:00 | 000,010,589 | ---- | M] () -- \xampp\perl\lib\XSLoader.pm
[2013/03/04 18:16:22 | 000,000,490 | ---- | M] () -- \xampp\perl\lib\Locale\Maketext\GutsLoader.pm
[2005/04/28 03:55:32 | 000,005,746 | ---- | M] () -- \xampp\perl\vendor\lib\Class\Loader.pm
[2001/05/02 06:01:04 | 000,000,648 | ---- | M] () -- \xampp\perl\vendor\lib\Class\LoaderTest.pm
[2012/07/13 21:57:02 | 000,024,325 | ---- | M] () -- \xampp\perl\vendor\lib\YAML\Loader.pm
[2012/04/16 17:30:20 | 000,004,896 | ---- | M] () -- \xampp\php\pear\Crypt\RSA\MathLoader.php
[2013/06/18 10:26:21 | 000,006,565 | ---- | M] () -- \xampp\php\pear\PEAR\Autoloader.php
[2013/06/18 10:26:21 | 000,066,585 | ---- | M] () -- \xampp\php\pear\PEAR\Downloader.php
[2013/06/18 16:16:52 | 000,005,511 | ---- | M] () -- \xampp\php\pear\PHPUnit\Runner\StandardTestSuiteLoader.php
[2013/06/18 16:16:52 | 000,002,806 | ---- | M] () -- \xampp\php\pear\PHPUnit\Runner\TestSuiteLoader.php
[2013/06/18 16:16:52 | 000,003,814 | ---- | M] () -- \xampp\php\pear\PHPUnit\Util\Fileloader.php
[2013/06/18 10:31:55 | 000,004,609 | ---- | M] () -- \xampp\php\pear\PHPUnit2\Runner\StandardTestSuiteLoader.php
[2013/06/18 10:31:55 | 000,003,186 | ---- | M] () -- \xampp\php\pear\PHPUnit2\Runner\TestSuiteLoader.php
[2013/06/18 10:31:56 | 000,003,767 | ---- | M] () -- \xampp\php\pear\PHPUnit2\Util\Fileloader.php
[2013/06/18 16:16:48 | 000,000,334 | ---- | M] () -- \xampp\php\pear\Symfony\Component\Yaml\autoloader.php
[2014/10/31 18:35:25 | 000,000,673 | ---- | M] () -- \xampp\phpMyAdmin\doc\html\_static\ajax-loader.gif
[2014/09/26 14:14:00 | 000,020,993 | ---- | M] () -- \xampp\tomcat\webapps\docs\class-loader-howto.html
[2014/09/26 14:14:02 | 000,017,721 | ---- | M] () -- \xampp\tomcat\webapps\docs\config\loader.html

========== Alternate Data Streams ==========

@Alternate Data Stream - 213 bytes -> C:\ProgramData\TEMP:8927A071

< End of report >

Re: Kontrola logu - pomalsi start systemu

Napsal: 19 kvě 2015 16:33
od vyosek
:arrow: Jen se zeptam pouzivate legalni operacni system, nejvyssi licence (v hodnote nejake tisic) Ultimate zrovna neni bezna domaci verze :?:

Re: Kontrola logu - pomalsi start systemu

Napsal: 19 kvě 2015 19:59
od matyii
Je tam Windows, ktory bol nainstalovany pri kupe notebooku (notebook bol pri kupe cisto novy)...

Re: Kontrola logu - pomalsi start systemu

Napsal: 23 kvě 2015 10:07
od vyosek
Poprosim o MBAM http://forum.viry.cz/viewtopic.php?f=29&t=137928

Re: Kontrola logu - pomalsi start systemu

Napsal: 30 kvě 2015 14:02
od matyii
Malwarebytes Anti-Malware
www.malwarebytes.org

Dátum skenovania: 30. 5. 2015
Scan ??as: 11:48:27
Logfile: log.txt
Správca: áno

Verzia: 2.01.6.1022
Malware databázy: v2015.05.30.01
Rootkit databázy: v2015.05.24.01
Licencia: Zadarmo
Ochrana pred škodlivým softvérom: Telesne
Škodlivých webových stránok Ochrana: Telesne
Sebaobrany: Telesne

OS: Windows 7
CPU: x64
Systém súborov: NTFS
Používateľ: Lenovo

Typ skenu: Prispôsobená kontrola
Výsledok: Dokon??ené
Objekty naskenované: 740712
Uplynulý ??as: 2 hr, 37 min 57 sekúnd

Pamäť: Povolené
Pri spustení: Povolené
Súborový systém: Povolené
Archív: Povolené
Rootkity: Telesne
Heuristiky: Povolené
ŠTEŇA: Povolené
VYKUROVAC: Povolené

Procesy: 0
(Žiadne zákernej položky neboli zistené)

Moduly: 0
(Žiadne zákernej položky neboli zistené)

Kľú??e databázy Registry: 3
PUP.Optional.Somoto, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\FilesFrog Update Checker, , [1baec8d1c1c93afc103774b55ca446ba],
PUP.Optional.Somoto.A, HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\SOFTWARE\Somoto, , [6b5efb9ea4e6f343235a27dc768e7987],
PUP.Optional.Somoto.A, HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\SOFTWARE\SOMOTO\SDP, , [4f7a871295f57fb71c4f400ba95c659b],

Hodnoty databázy Registry: 1
PUP.Optional.Somoto.A, HKU\S-1-5-21-3413017964-2039321696-1439861226-1000\SOFTWARE\SOMOTO\SDP|affid, dynamac, , [4f7a871295f57fb71c4f400ba95c659b]

Údaje databázy Registry: 0
(Žiadne zákernej položky neboli zistené)

Prie??inky: 3
PUP.Keylogger, C:\Program Files (x86)\DanuSoft Free Keylogger, , [d4f537621d6d91a53c8650f10cf925db],
PUP.Optional.FilesFrog.A, C:\Users\Lenovo\AppData\Local\FilesFrog Update Checker, , [25a4a5f4b3d778be1c1d1798c043de22],
PUP.Optional.FilesFrog.A, C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker, , [63660a8fc1c9c17545f5f2bdcc3747b9],

Súbory: 19
Trojan.Agent.CK, C:\Users\Lenovo\AppData\Local\Temp\~nsu.tmp\Au_.exe, , [76536d2c29618caabcda98a99472b24e],
Trojan.Agent.CK, C:\Users\Lenovo\AppData\Local\Temp\~nsu.tmp\Bu_.exe, , [10b9d1c8404a71c53c5aab9641c5867a],
Trojan.Agent.CK, C:\Users\Lenovo\AppData\Local\Temp\~nsu.tmp\Cu_.exe, , [a5249cfdddad95a1672fe25f6c9a6799],
Trojan.Agent.CK, C:\Users\Lenovo\AppData\Local\Temp\~nsu.tmp\Du_.exe, , [03c65e3b1d6dfd399501b889877f0ff1],
Trojan.Agent.CK, C:\Users\Lenovo\AppData\Local\Temp\~nsu.tmp\Eu_.exe, , [0ebb9801cdbd44f23a5c0938b05622de],
Trojan.Agent.CK, C:\Users\Lenovo\AppData\Local\Temp\~nsu.tmp\Fu_.exe, , [cefbcbce8a00bc7ad5c1221f986e926e],
Trojan.Agent.CK, C:\Users\Lenovo\AppData\Local\Temp\~nsu.tmp\Gu_.exe, , [08c15445c1c9ae88078f8fb29c6ada26],
PUP.Optional.Somoto, C:\Users\Lenovo\AppData\Local\FilesFrog Update Checker\uninstall.exe, , [1baec8d1c1c93afc103774b55ca446ba],
PUP.Keylogger, C:\Users\Lenovo\Downloads\DSFreeKeylogger.exe, , [8f3a6b2e8505ad893d0fe81e43c0857b],
PUP.Optional.OpenCandy, C:\Users\Lenovo\Downloads\DTLite4481-0347.exe, , [5c6d8b0e33572d09f94edf7725e1ef11],
PUP.Optional.Somoto.A, C:\Users\Lenovo\Downloads\file_installer_downloader-00WLM4Ta.exe, , [91389bfeb4d63ef86ae1a430768f5ba5],
PUP.Optional.BundleInstaller.A, C:\Users\Lenovo\Downloads\GetPrivateSetup.exe, , [7950c3d65139a294ca697ef1fa0719e7],
Riskware.KG, C:\Program Files\ESET\MiNODLogin\uninst.exe, , [31984752abdf37ff55df4f4105fb5fa1],
RiskWare.Tool.CK, D:\Torrents\ESET PureFix v2.03 (Crack).rar, , [5772b5e4b8d235011f53a70e5aa631cf],
PUP.Hacktool.Patcher, D:\Torrents\Lingea Lexicon 5 CZ (SK) - EN\crack\lingea.lexicon.5.v5.0.0.0-patch.exe, , [64656633d7b3320422a6ec1b4bb541bf],
PUP.Optional.Somoto.A, C:\Windows\System32\Tasks\SomotoUpdateCheckerAutoStart, , [d5f462371575c571db3bc337c2413ac6],
PUP.Keylogger, C:\Program Files (x86)\DanuSoft Free Keylogger\logfile.txt, , [d4f537621d6d91a53c8650f10cf925db],
PUP.Optional.FilesFrog.A, C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Check for Updates.lnk, , [63660a8fc1c9c17545f5f2bdcc3747b9],
PUP.Optional.FilesFrog.A, C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Uninstall.lnk, , [63660a8fc1c9c17545f5f2bdcc3747b9],

Fyzický sektory: 0
(Žiadne zákernej položky neboli zistené)


(end)

Re: Kontrola logu - pomalsi start systemu

Napsal: 30 kvě 2015 15:42
od vyosek
Co udelame s tim nelegalnim ESETem??

Re: Kontrola logu - pomalsi start systemu

Napsal: 30 kvě 2015 16:54
od matyii
kludne zmazat, z firmy mam original

Re: Kontrola logu - pomalsi start systemu

Napsal: 02 čer 2015 18:01
od vyosek
Firemni licence je urcena pouze pro firemni stroje, tak hovori licence...

Pokud chcete pomoci zde na foru, tak odinstalujte nelegalni ESET a dejte free reseni (napr. Avast), pak napiste a budeme pokracovat
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz